Bug#424654: marked as done (centericq: links to libcurl4-openssl)
Your message dated Sun, 01 Jul 2007 06:47:03 + with message-id [EMAIL PROTECTED] and subject line Bug#424654: fixed in centericq 4.21.0-20 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: centericq Version: 4.21.0-19+b2 Severity: serious Justification: Policy 2.3 centericq is distributed under the GPL. OpenSSL, which is distributed under a non-compatible license is linked to libcurl4-openssl. centericq should use libcurl4-gnutls. Perhaps, changing the Build-Depends would have avoided this binNMU situation. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable') Architecture: amd64 (x86_64) Kernel: Linux 2.6.20-1-vserver-amd64 (SMP w/1 CPU core) Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/bash Versions of packages centericq depends on: ii centericq-common4.21.0-19+b2 A text-mode multi-protocol instant ii libc6 2.5-7GNU C Library: Shared libraries ii libcurl4-openssl7.16.2-3 Multi-protocol file transfer libra ii libgcc1 1:4.1.2-6GCC support library ii libgnutls13 1.6.2-2 the GNU TLS library - runtime libr ii libgpg-error0 1.4-2library for common error values an ii libgpgme11 1.1.2-5 GPGME - GnuPG Made Easy ii libkrb531.6.dfsg.1-4 MIT Kerberos runtime libraries ii libncurses5 5.5-5Shared libraries for terminal hand ii libssl0.9.8 0.9.8e-4 SSL shared libraries ii libstdc++6 4.1.2-6 The GNU Standard C++ Library v3 Versions of packages centericq recommends: ii elinks [www-browser] 0.11.1-1.4 advanced text-mode WWW browser ii epiphany-browser [www-browser 2.18.1-2 Intuitive GNOME web browser ii lynx [www-browser]2.8.6-2Text-mode WWW Browser ii sox 13.0.0-1 Swiss army knife of sound processi -- no debconf information ---End Message--- ---BeginMessage--- Source: centericq Source-Version: 4.21.0-20 We believe that the bug you reported is fixed in the latest version of centericq, which is due to be installed in the Debian FTP archive: centericq-common_4.21.0-20_i386.deb to pool/main/c/centericq/centericq-common_4.21.0-20_i386.deb centericq-fribidi_4.21.0-20_i386.deb to pool/main/c/centericq/centericq-fribidi_4.21.0-20_i386.deb centericq-utf8_4.21.0-20_i386.deb to pool/main/c/centericq/centericq-utf8_4.21.0-20_i386.deb centericq_4.21.0-20.diff.gz to pool/main/c/centericq/centericq_4.21.0-20.diff.gz centericq_4.21.0-20.dsc to pool/main/c/centericq/centericq_4.21.0-20.dsc centericq_4.21.0-20_i386.deb to pool/main/c/centericq/centericq_4.21.0-20_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Anibal Avelar (Fixxxer) [EMAIL PROTECTED] (supplier of updated centericq package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 08 Jun 2007 13:24:47 -0500 Source: centericq Binary: centericq-common centericq-utf8 centericq-fribidi centericq Architecture: source i386 Version: 4.21.0-20 Distribution: unstable Urgency: low Maintainer: Anibal Avelar (Fixxxer) [EMAIL PROTECTED] Changed-By: Anibal Avelar (Fixxxer) [EMAIL PROTECTED] Description: centericq - A text-mode multi-protocol instant messenger client centericq-common - A text-mode multi-protocol instant messenger client (data files) centericq-fribidi - A text-mode multi-protocol instant messenger client (Hebrew) centericq-utf8 - A text-mode multi-protocol instant messenger client Closes: 393522 416958 424654 Changes: centericq (4.21.0-20) unstable; urgency=low . * New mantainer, Closes: #416958 * Changed to libcurl4-gnutls instead libcurl4-openssl due to non-compatible license, Closes: #424654 * Was proved that the libmsn update (3.1.1 to 3.2) contained in new-msn.dpatch fixed some open bugs, Closes: #393522 * The SSL support for jabber and gadu-gadu don't work for now due to
Bug#428794: Me too
This just bit me, too. It looks like we have multiple options to fix this, has one been selected? -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431262: gnome-rdp is not architecture dependent, CLI Policy violation 3.1.1
Package: gnome-rdp Severity: serious gnome-rdp's debian/control says Architecture: any which is not correct as the binary package does not contain architecture depedent files. dll and exe files are both in the CIL [0] bytecode format and are architecture indepedent (like java class/jars). Please change it to all. This is a violation the CLI Policy section 3.1.1 [1] [0] http://pkg-mono.alioth.debian.org/cli-policy/ch-terms.html#s-CIL [1] http://pkg-mono.alioth.debian.org/cli-policy/ch-packaging.html#s-architecture -- Regards, Mirco 'meebey' Bauer PGP-Key ID: 0xEEF946C8 FOSS Developer[EMAIL PROTECTED] http://www.meebey.net/ PEAR Developer[EMAIL PROTECTED] http://pear.php.net/ Debian Developer [EMAIL PROTECTED] http://www.debian.org/ signature.asc Description: This is a digitally signed message part
Bug#431263: gtwitter is not architecture dependent, CLI Policy violation 3.1.1
Package: gtwitter Severity: serious gtwitter's debian/control says Architecture: any which is not correct as the binary package does not contain architecture depedent files. dll and exe files are both in the CIL [0] bytecode format and are architecture indepedent (like java class/jars). Please change it to all. This is a violation the CLI Policy section 3.1.1 [1] [0] http://pkg-mono.alioth.debian.org/cli-policy/ch-terms.html#s-CIL [1] http://pkg-mono.alioth.debian.org/cli-policy/ch-packaging.html#s-architecture PS: using libsexy-dev in the binary deps is incorrect too, you need to change the DllImport (called pinvoke) or a DLL map, see: http://pkg-mono.alioth.debian.org/cli-policy/ch-mono.html#s4.2 -- Regards, Mirco 'meebey' Bauer PGP-Key ID: 0xEEF946C8 FOSS Developer[EMAIL PROTECTED] http://www.meebey.net/ PEAR Developer[EMAIL PROTECTED] http://pear.php.net/ Debian Developer [EMAIL PROTECTED] http://www.debian.org/ signature.asc Description: This is a digitally signed message part
Bug#430801: Reproducibility
On 6/30/07, Портон Виктор Львович [EMAIL PROTECTED] wrote: OK, this bug can be reproduced by me after I removed /usr/local/ version of TeXmacs. So for me this grave bug is reproducible. $ /usr/bin/texmacs /usr/bin/texmacs: line 28: exec: texmacs.bin: not found This looks like your installation of texmacs is not complete or not done properly. The texmacs.bin file is in Now I realized the problem is that I have (wrongly) set $TEXMACS_PATH. Please close the bug.
Bug#429627: boson: System locked up if not use --indirect; if use --indirect, crashed when start mission
Hello, Thank you for the report. I don't think this graphic problem come from boson directly. Which graphic driver do you? Can you try the boson-0.13 that is in experimental? Best regards, Gonéri Le Bouder signature.asc Description: Digital signature
Bug#428794: Me too
James Youngman wrote: This just bit me, too. It looks like we have multiple options to fix this, has one been selected? If you just want to fix your X server, you should change keyboard into kbd in your xorg.conf. For the future and backward compatibility, we will probably upload a new package with an alias from keyboard to kbd soon, so that users don't have to change anything. Brice -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431267: libzeroc-ice-cil violates CLI Policy 3.2.1 and 3.1.2
Package: libzeroc-ice-cil Severity: serious The libzeroc-ice-cil package uses an unversioned packaging name, thus binary dependencies on this package will break other software when ABI or API breaks without further notice. This is a violation of the Debian CLI Policy section 3.2.1 [0] There are *.exe files in /usr/bin, this violates Debian CLI Policy section 3.1.2 [1], same with symlinks/files in /usr/lib/mono/zeroc-ice (caused by the gacutil -p parameter). For linking the libraries should go in /usr/lib/cli/zeroc-ice-X.Y/, see CLI policy [1] for details. [0] http://pkg-mono.alioth.debian.org/cli-policy/ch-packaging.html#s-gac-naming-versioning [1] http://pkg-mono.alioth.debian.org/cli-policy/ch-packaging.html#s-file-locations PS: in debian/rules the call to dh_makeclilibs has no parameters, this is a problem when the API grows, you should consider to use -V. See the dh_makeclilibs manpage for further information. -- Regards, Mirco 'meebey' Bauer PGP-Key ID: 0xEEF946C8 FOSS Developer[EMAIL PROTECTED] http://www.meebey.net/ PEAR Developer[EMAIL PROTECTED] http://pear.php.net/ Debian Developer [EMAIL PROTECTED] http://www.debian.org/ signature.asc Description: This is a digitally signed message part
Bug#431273: xcwcp fails to install: xcwcp/suid_bit debconf template doesn't exist
Package: xcwcp
Version: 2.3-6
Severity: serious
Hi,
In xcwcp.postinst, you do:
db_get xcwcp/suid_bit
But that template doesn't exist. So postinst fails:
+ set -x
+ '[' configure = configure ']'
++ which update-menus
+ '[' -x '' ']'
+ '[' configure = configure ']'
+ . /usr/share/debconf/confmodule
++ '[' '!' '' ']'
++ PERL_DL_NONLAZY=1
++ export PERL_DL_NONLAZY
++ '[' '' ']'
++ exec /usr/share/debconf/frontend info/xcwcp.postinst configure
+ '[' configure = configure ']'
++ which update-menus
+ '[' -x '' ']'
+ '[' configure = configure ']'
+ . /usr/share/debconf/confmodule
++ '[' '!' 1 ']'
++ '[' -z '' ']'
++ exec
++ '[' '' ']'
++ exec
++ DEBCONF_REDIR=1
++ export DEBCONF_REDIR
+ db_get xcwcp/suid_bit
+ _db_cmd 'GET xcwcp/suid_bit'
+ IFS=' '
+ printf '%s\n' 'GET xcwcp/suid_bit'
+ IFS='
'
+ read -r _db_internal_line
+ RET='10 xcwcp/suid_bit doesn'\''t exist'
+ case ${_db_internal_line%%[ ]*} in
+ return 10
--
| Lucas Nussbaum
| [EMAIL PROTECTED] http://www.lucas-nussbaum.net/ |
| jabber: [EMAIL PROTECTED] GPG: 1024D/023B3F4F |
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431165: cpio: Wrong GPL verson in debian/copyright
* Sven Joachim ([EMAIL PROTECTED]) [070630 14:33]: Thomas Dickey writes: the new cpio version is released under GPL 3, but debian/copyright still says it's under GPL 2. You need to update the file and include the complete GPL 3 text, as long as base-files does not contain it. actually not: it's only a requirement if the packagers choose (as is likely but not certain) to upgrade to the new version. Sorry, I do not understand this: Whom do you refer to as packagers? If you mean the upstream authors, they _have_ just switched to GPL 3; if you refer to the Debian maintainer, he has to follow that, of course. Actually, the old versions will continue to be licensed as GPL v2. Only the new versions are GPL v3. Cheers, Andi -- http://home.arcor.de/andreas-barth/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#429764: marked as done (clamav-freshclam: Asks for password during dpkg configure, WTF?)
Your message dated Sun, 1 Jul 2007 13:11:58 +0100 with message-id [EMAIL PROTECTED] and subject line Bug#429764: Followup on bug#429764 -- clamav-freshclam asks for password during dpkg configure has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: clamav-freshclam Version: 0.90.3-1 Severity: grave Justification: renders package unusable When installing new clamav-freshclam, I get the following; [EMAIL PROTECTED]sudo dpkg --configure -a Setting up clamav-freshclam (0.90.3-1) ... Replacing config file /etc/cron.d/clamav-freshclam with new version Starting database update: Password: At this point, I can do nothing and just abort the configure. I suspect improper use of su. -- System Information: Debian Release: lenny/sid Architecture: i386 (i686) Kernel: Linux 2.6.21.1-sor-2007050601 (SMP w/2 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages clamav-freshclam depends on: ii clamav-base 0.90.3-1 base package for clamav, an anti-v ii debconf [debconf-2.0] 1.5.13 Debian configuration management sy ii debianutils 2.21 Miscellaneous utilities specific t ii libc6 2.5-11 GNU C Library: Shared libraries ii libclamav20.90.3-1 virus scanner library ii logrotate 3.7.1-3Log rotation utility ii lsb-base 3.1-23.1 Linux Standard Base 3.1 init scrip ii ucf 3.001 Update Configuration File: preserv ii zlib1g1:1.2.3-15 compression library - runtime clamav-freshclam recommends no packages. -- debconf information: * clamav-freshclam/autoupdate_freshclam: cron * clamav-freshclam/local_mirror: db.local.clamav.net clamav-freshclam/mirrors.txt-note: clamav-freshclam/internet_interface: clamav-freshclam/proxy_user: * clamav-freshclam/NotifyClamd: /etc/clamav/clamd.conf * clamav-freshclam/http_proxy: * clamav-freshclam/update_interval: 4 ---End Message--- ---BeginMessage--- This one time, at band camp, Jesse Molina said: This bug can be closed. This is actually a problem of su not being able to run as root without a password. This is either a su or PAM bug, or I have some kind of misconfiguration on my system. I imagine that a lot of people would be upset if this was a wider problem, so it's probably something specific to my system. my /etc/pam.d/su file is correctly configured, but it seems that it's not being respected. I'm troubleshooting it now. Thanks for the help. Again, please close this bug. This is not a clam problem. OK, thanks for the troublshooting, and good luck fixing the real poblem, wherever it is. -- - | ,''`.Stephen Gran | | : :' :[EMAIL PROTECTED] | | `. `'Debian user, admin, and developer | |`- http://www.debian.org | - signature.asc Description: Digital signature ---End Message---
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
Package: initramfs-tools Severity: grave Justification: renders package unusable Booting with 'root=UUID=...' fails, it just hangs at Waiting for root file system... and you can't boot your system anymore unless you fall back to root=/dev/... syntax. It's a problem of initramfs-tools 0.88. It works fine with 0.87b. regards, -mika- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
tags 431291 moreinfo stop On Sun, Jul 01, 2007 at 02:39:40PM +0200, Michael Prokop wrote: Package: initramfs-tools Severity: grave Justification: renders package unusable hmm not much info attached. Booting with 'root=UUID=...' fails, it just hangs at Waiting for root file system... and you can't boot your system anymore unless you fall back to root=/dev/... syntax. It's a problem of initramfs-tools 0.88. It works fine with 0.87b. please attach the output of the reportbug script, you are not using MODULES=dep by chance? regards -- maks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
On Sun, Jul 01, 2007 at 02:50:53PM +0200, maximilian attems wrote: Booting with 'root=UUID=...' fails, it just hangs at Waiting for root file system... and you can't boot your system anymore unless you fall back to root=/dev/... syntax. It's a problem of initramfs-tools 0.88. It works fine with 0.87b. please attach the output of the reportbug script, you are not using MODULES=dep by chance? another high probability error is vol_id, i'll revert that change soon as i'm fed up of reports against it and afair to your irc log you where using mdadm, where it has trouble to recognize. see also http://wiki.debian.org/InitramfsDebug -- maks -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
* maximilian attems [EMAIL PROTECTED] [20070701 15:06]: On Sun, Jul 01, 2007 at 02:39:40PM +0200, Michael Prokop wrote: Package: initramfs-tools Severity: grave Justification: renders package unusable hmm not much info attached. Because I don't have any more. ;) Booting with 0.87b works fine and as soon as I run: dpkg -i initramfs-tools_0.88_all.deb update-initramfs -c -t -k $(uname -r) reboot the system fails to boot. When booting via grml live-cd, downgrading to initramfs-tools_0.87b_all.deb, running update-initramfs and rebooting again the system boots without any problems. Booting with 'root=UUID=...' fails, it just hangs at Waiting for root file system... and you can't boot your system anymore unless you fall back to root=/dev/... syntax. It's a problem of initramfs-tools 0.88. It works fine with 0.87b. please attach the output of the reportbug script, Does not work as the affected system can't boot at all with the setup that does not work. ;) So regarding /usr/share/bug/initramfs-tools/script: * The difference in /proc/cmdline is just the root=UUID=... stuff, no further magic (don't have the full line by hand now). * Regarding /proc/filesystems: the kernel talks ext3 (the filesystem used on /). * lsmod output should be irrelevant and I don't have it by hand * cat /etc/kernel-img.conf - # Kernel Image management overrides # See kernel-img.conf(5) for details do_symlinks = Yes you are not using MODULES=dep by chance? # sed 's/#.*$//;/^[[:space:]]*$/d' /etc/initramfs-tools/initramfs.conf MODULES=most BUSYBOX=y KEYMAP=n BOOT=local DEVICE=eth0 NFSROOT=auto regards, -mika- signature.asc Description: Digital signature
Bug#431298: php-image-barcode: Uninstallable due to unmet dep on php-gd
Package: php-image-barcode Severity: serious Version: 1.0.4-2 Hi Your package is not installable anymore as it depends on php-gd which is not available in unstable. You might want to update the dependency to php-gd5. Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#426012: python-scipy: cannot install
Hi The package is not installable due to the following: python-numpy: Conflicts: python-scipy (= 0.5.2-7+b1) but 0.5.2-7+b1 is to be installed Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431298: php-image-barcode: Uninstallable due to unmet dep on php-gd
Luk Claes wrote: Package: php-image-barcode Severity: serious Version: 1.0.4-2 Hi Your package is not installable anymore as it depends on php-gd which is not available in unstable. You might want to update the dependency to php-gd5. php5-gd obviously... Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431300: ocsinventory-agent: Uninstallable on [!i386 !amd64 !ia64] due to unmet dep on dmidecode
Package: ocsininventory-agent Severity: serious Version: 1.01-5 Hi Your package is not installable on architectures where dmidecode (one of the dependencies of your package) is not available. Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity of 426923 is serious
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.5 severity 426923 serious Bug#426923: gmailfs: Broken package : depends on unavailable python-fuse 2.2-2 Severity set to `serious' from `normal' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity of 431106 is serious
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.5 severity 431106 serious Bug#431106: enigmail-locale-de: Will be removed when upgrading enigmail package Severity set to `serious' from `important' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: reassign 431300 to ocsinventory-agent
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.5 reassign 431300 ocsinventory-agent Bug#431300: ocsinventory-agent: Uninstallable on [!i386 !amd64 !ia64] due to unmet dep on dmidecode Warning: Unknown package 'ocsininventory-agent' Bug reassigned from package `ocsininventory-agent' to `ocsinventory-agent'. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431302: iscsitarget: Uninstallable due to unmet dep on iscsitarget-module
Package: iscsitarget Severity: serious Version: 0.4.15-2 Hi Your package is not installable as it depends on iscsitarget-module, which is not available in unstable. Cheers Luk -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431263: gtwitter is not architecture dependent, CLI Policy violation 3.1.1
On 7/1/07, Mirco Bauer [EMAIL PROTECTED] wrote: Package: gtwitter Severity: serious gtwitter's debian/control says Architecture: any which is not correct as the binary package does not contain architecture depedent files. dll and exe files are both in the CIL [0] bytecode format and are architecture indepedent (like java class/jars). Please change it to all. This is a violation the CLI Policy section 3.1.1 [1] [0] http://pkg-mono.alioth.debian.org/cli-policy/ch-terms.html#s-CIL [1] http://pkg-mono.alioth.debian.org/cli-policy/ch-packaging.html#s-architecture PS: using libsexy-dev in the binary deps is incorrect too, you need to change the DllImport (called pinvoke) or a DLL map, see: http://pkg-mono.alioth.debian.org/cli-policy/ch-mono.html#s4.2 -- Regards, Mirco 'meebey' Bauer PGP-Key ID: 0xEEF946C8 FOSS Developer[EMAIL PROTECTED] http://www.meebey.net/ PEAR Developer[EMAIL PROTECTED] http://pear.php.net/ Debian Developer [EMAIL PROTECTED] http://www.debian.org/ This is an ack of this bug, which I was aware of before, but did not know how to fix and didn't have the time at the moment. Unfortunately I am away from my main debian development computer and will not be able to fix this until next week. Feel free to NMU if desired. -- Michael Janssen --- Jamuraa --- [EMAIL PROTECTED] --- [EMAIL PROTECTED] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431308: FTBFS (alpha): invalid conversion from 'int*' to 'socklen_t*'
Package: sip-tester Version: 2.0.1-1 Severity: serious Justification: no longer builds from source sip-tester fails to build on Alpha: [...] gcc -D__LINUX -pthread -D__3PCC__ -D_USE_OPENSSL -DOPENSSL_NO_KRB5 -DPCAPPLAY -I/usr/include -I. -I/opt/openssl/include -c -o call.o call.cpp call.cpp: In member function 'void call::connect_socket_if_needed()': call.cpp:827: error: invalid conversion from 'int*' to 'socklen_t*' call.cpp:827: error: initializing argument 3 of 'int getsockname(int, sockaddr*, socklen_t*)' call.cpp: In member function 'char* call::createSendingMessage(char*, int)': call.cpp:2044: error: invalid conversion from 'int*' to 'socklen_t*' call.cpp:2044: error: initializing argument 3 of 'int getsockname(int, sockaddr*, socklen_t*)' make[2]: *** [call.o] Error 1 make[2]: Leaving directory `/home/falk/sip-tester-2.0.1' Full log at http://buildd.debian.org/fetch.cgi?pkg=sip-testerver=2.0.1-1arch=alphastamp=1179311676file=log This is from bogus code in sipp.hpp: #if defined (__hpux) || defined (__alpha) !defined (__FreeBSD__) #define sipp_socklen_t int #else #define sipp_socklen_t socklen_t #endif Apparently, __alpha is supposed to detect Tru64 Unix. The correct way to do that is: #if defined (__digital__) defined (__unix__) Falk -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: alpha Kernel: Linux 2.6.20 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/bash Versions of packages sip-tester depends on: ii libc6.1 2.5-11 GNU C Library: Shared libraries ii libgcc1 1:4.2-20070609-1 GCC support library ii libncurses5 5.6-3Shared libraries for terminal hand pn libnet1 none (no description available) pn libpcap0.7 none (no description available) ii libssl0.9.8 0.9.8e-5 SSL shared libraries ii libstdc++6 4.2-20070609-1 The GNU Standard C++ Library v3 sip-tester recommends no packages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431312: FTBFS (alpha): static declaration of 'strtod' follows non-static declaration
Package: dash Version: 0.5.3-9 Severity: serious Justification: no longer builds from source dash fails to build on Alpha: [...] gcc -DHAVE_CONFIG_H -I. -I/home/falk/dash-0.5.3/build-udeb-tmp/../src -I.. -include ../config.h -DBSD=1 -DSMALL -DSHELL -DGLOB_BROKEN -DFNMATCH_BROKEN -DIFS_BROKEN -Wall -nostdinc -g -DREALLY_SMALL -Wall -MT error.o -MD -MP -MF .deps/error.Tpo -c -o error.o /home/falk/dash-0.5.3/build-udeb-tmp/../src/error.c -isystem /usr/lib/diet/include -D__dietlibc__ -Os -fomit-frame-pointer In file included from /home/falk/dash-0.5.3/build-udeb-tmp/../src/error.c:55: /home/falk/dash-0.5.3/build-udeb-tmp/../src/system.h:66: error: static declaration of 'strtod' follows non-static declaration /usr/lib/diet/include/stdlib.h:26: error: previous declaration of 'strtod' was here make[4]: *** [error.o] Error 1 make[4]: Leaving directory `/home/falk/dash-0.5.3/build-udeb-tmp/src' Full log at http://buildd.debian.org/fetch.cgi?pkg=dashver=0.5.3-9arch=alphastamp=1182866775file=log Maybe system.h should have an #include config.h. Falk -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: alpha Kernel: Linux 2.6.20 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) Shell: /bin/sh linked to /bin/bash Versions of packages dash depends on: ii libc6.1 2.5-11 GNU C Library: Shared libraries dash recommends no packages. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: severity of 429407 is grave
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 severity 429407 grave Bug#429407: Crashes on Startup: undefined symbol: PyErr_WarnEx Severity set to `grave' from `important' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#430081: confirm quilt FTBFS as of 0.46-2
Hi, I can confirm this bug with version 0.46-2 . I try to build it in a chroot if it matters. Regards, Laszlo/GCS -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431315: xserver-xorg-video-avivo_0.0.1+git20070614-1(hppa/experimental): FTBFS: configure not executable
Package: xserver-xorg-video-avivo
Version: 0.0.1+git20070614-1
Severity: serious
Hi,
your package failed to build from source. You know the drill ;)
| Automatic build of xserver-xorg-video-avivo_0.0.1+git20070614-1 on meitner by
sbuild/hppa 98-farm
| Build started at 20070701-1615
| **
| Checking available source versions...
| Fetching source files...
| Reading package lists...
| Building dependency tree...
| Need to get 389kB of source archives.
| Get:1 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo
0.0.1+git20070614-1 (dsc) [937B]
| Get:2 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo
0.0.1+git20070614-1 (tar) [81.1kB]
| Get:3 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo
0.0.1+git20070614-1 (diff) [307kB]
| Fetched 389kB in 4s (90.8kB/s)
| Download complete and in download only mode
| ** Using build dependencies supplied by package:
| Build-Depends: debhelper (= 5.0.0), pkg-config, xserver-xorg-dev (=
2:1.2.99.902), x11proto-video-dev, x11proto-core-dev, x11proto-fonts-dev,
x11proto-randr-dev, x11proto-render-dev, x11proto-xext-dev, libpciaccess-dev,
autotools-dev, quilt
| Checking for already installed source dependencies...
[...]
| Checking correctness of source dependencies...
| Toolchain package versions: libc6-dev_2.5-9 gcc-4.1_4.1.2-12 g++-4.1_4.1.2-12
binutils_2.17cvs20070426-8 libstdc++6-4.1-dev_4.1.2-12 libstdc++6_4.2-20070609-1
| --
| gpg: Signature made Fri Jun 15 02:34:10 2007 CEST using DSA key ID AC5F700C
| gpg: Can't check signature: public key not found
| dpkg-source: extracting xserver-xorg-video-avivo in
xserver-xorg-video-avivo-0.0.1+git20070614
| dpkg-source: unpacking xserver-xorg-video-avivo_0.0.1+git20070614.orig.tar.gz
| dpkg-source: applying
/home/buildd/build/xserver-xorg-video-avivo_0.0.1+git20070614-1.diff.gz
| su: Authentication service cannot retrieve authentication info.
| (Ignored)
| dpkg-buildpackage: source package is xserver-xorg-video-avivo
| dpkg-buildpackage: source version is 0.0.1+git20070614-1
| dpkg-buildpackage: host architecture hppa
| dpkg-buildpackage: source version without epoch 0.0.1+git20070614-1
| /usr/bin/fakeroot debian/rules clean
| rm -f stampdir/genscripts
| rm -f debian/*.config \
| debian/*.postinst \
| debian/*.postrm \
| debian/*.preinst \
| debian/*.prerm
| rm -f stampdir/patch
| Unapplying patches...nothing to do.
| dh_testdir
| rm -f .pc patches
| rm -rf stampdir build-tree
| rm -rf imports
| dh_clean debian/shlibs.local \
|debian/MANIFEST.hppa debian/MANIFEST.hppa.new \
|debian/po/pothead
| dh_testdir
| dh_testroot
| rm -f build-stamp
| # Add here commands to clean up after the build process.
| /usr/bin/make distclean
| make[1]: Entering directory
`/build/buildd/xserver-xorg-video-avivo-0.0.1+git20070614'
| make[1]: *** No rule to make target `distclean'. Stop.
| make[1]: Leaving directory
`/build/buildd/xserver-xorg-video-avivo-0.0.1+git20070614'
| make: [clean] Error 2 (ignored)
| rm -f config.sub config.guess
| dh_clean
| debian/rules build
| mkdir stampdir
| stampdir/stampdir
| if [ ! -e stampdir/patches ]; then \
| mkdir stampdir/patches; \
| ln -s stampdir/patches .pc; \
| echo 2 stampdir/patches/.version; \
| fi; \
| if [ ! -e stampdir/log ]; then \
| mkdir stampdir/log; \
| fi; \
| if [ -e debian/patches ] [ ! -e patches ]; then \
| ln -s debian/patches patches; \
| fi; \
| stampdir/prepare
| if ! [ `which quilt` ]; then \
| echo Couldn't find quilt. Please install it or add it to the
build-depends for this package.; \
| exit 1; \
| fi; \
| if quilt next; then \
| echo -n Applying patches...; \
| if quilt push -a -v stampdir/log/patch 21; then \
| echo successful.; \
| else \
| echo failed! (check stampdir/log/patch for details); \
| exit 1; \
| fi; \
| else \
| echo No patches to apply; \
| fi; \
| stampdir/patch
| implicit_declarations.diff
| Applying patches...successful.
| dh_testdir
| # Add here commands to configure the package.
| cp -f /usr/share/misc/config.sub config.sub
| cp -f /usr/share/misc/config.guess config.guess
| ./configure --prefix=/usr --mandir=\${prefix}/share/man \
| --infodir=\${prefix}/share/info \
| CFLAGS=-Wall -g -Wno-unused -O2 CPPFLAGS=-D_BSD_SOURCE \
| --build=hppa-linux-gnu
| /bin/sh: ./configure: Permission denied
| make: *** [config.status] Error 126
| **
| Build finished at 20070701-1616
| FAILED [dpkg-buildpackage died]
Full build log(s
Processed: tagging 427243
Processing commands for [EMAIL PROTECTED]: tags 427243 pending Bug#427243: libmx4j-java-gcj: uninstallable, depends on not available liblog4j1.2-java-gcj There were no tags set. Tags added: pending End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431325: newsbeuter - FTBFS: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)'
Package: newsbeuter Version: 0.4-2+b2 Severity: serious There was an error while trying to autobuild your package: Automatic build of newsbeuter_0.4-2+b2 on debian-31.osdl.marist.edu by sbuild/s390 98 [...] c++ -ggdb -I./include -I./stfl -I. -I/usr/local/include -I/sw/include -Wall -D_ENABLE_NLS -DLOCALEDIR=\/usr/share/locale\ -DPACKAGE=\newsbeuter\ -o src/controller.o -c src/controller.cpp src/controller.cpp: In member function 'void newsbeuter::controller::import_opml(const char*)': src/controller.cpp:422: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)' src/controller.cpp:428: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)' make[1]: *** [src/controller.o] Error 1 make[1]: Leaving directory `/build/buildd/newsbeuter-0.4' make: *** [build-stamp] Error 2 ** Build finished at 20070701-1232 FAILED [dpkg-buildpackage died] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431324: apt-watch - FTBFS: undefined reference to `glade_xml_signal_autoconnect'
Package: apt-watch Version: 0.3.2-8+b1 Severity: serious There was an error while trying to autobuild your package: Automatic build of apt-watch_0.3.2-8+b1 on debian-31.osdl.marist.edu by sbuild/s390 98 [...] s390-linux-gnu-g++ -g -O2 -Wall -Werror -o apt-watch apt-watch-gnome.o apt-watch-preferences.o prefs-check-freq.o prefs-download-upgrade.o prefs-package-manager.o prefs-notify.o -Wl,--export-dynamic -pthread -lpanel-applet-2 -lgnomeui-2 -lSM -lICE -lbonoboui-2 -lgnomevfs-2 -lgnome-keyring -lgconf-2 -lgnomecanvas-2 -lgnome-2 -lpopt -lart_lgpl_2 -lpangoft2-1.0 -lgtk-x11-2.0 -lgdk-x11-2.0 -latk-1.0 -lgdk_pixbuf-2.0 -lm -lpangocairo-1.0 -lfontconfig -lXext -lXrender -lXinerama -lXi -lXrandr -lXcursor -lXfixes -lpango-1.0 -lcairo -lX11 -lbonobo-2 -lbonobo-activation -lgmodule-2.0 -ldl -lORBit-2 -lgthread-2.0 -lrt -lgobject-2.0 -lglib-2.0 -Lglade-2.0 ../common/libapt-watch-common.a apt-watch-gnome.o: In function `bonobo_about': /build/buildd/apt-watch-0.3.2/ui-gnome/apt-watch-gnome.cc:278: undefined reference to `glade_xml_signal_autoconnect' /build/buildd/apt-watch-0.3.2/ui-gnome/apt-watch-gnome.cc:278: undefined reference to `glade_xml_new' apt-watch-gnome.o: In function `std::basic_stringchar, std::char_traitschar, std::allocatorchar ::_Rep::_M_dispose(std::allocatorchar const)': /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_get_widget' /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_signal_autoconnect' /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_new' apt-watch-preferences.o: In function `do_preferences(void*)': /build/buildd/apt-watch-0.3.2/ui-gnome/apt-watch-preferences.cc:65: undefined reference to `glade_xml_get_widget' /build/buildd/apt-watch-0.3.2/ui-gnome/apt-watch-preferences.cc:65: undefined reference to `glade_xml_signal_autoconnect' /build/buildd/apt-watch-0.3.2/ui-gnome/apt-watch-preferences.cc:65: undefined reference to `glade_xml_new' prefs-check-freq.o: In function `std::basic_stringchar, std::char_traitschar, std::allocatorchar ::_Rep::_M_dispose(std::allocatorchar const)': /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_get_widget' prefs-download-upgrade.o: In function `std::basic_stringchar, std::char_traitschar, std::allocatorchar ::_Rep::_M_dispose(std::allocatorchar const)': /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_get_widget' prefs-package-manager.o: In function `init_preferences_package_manager(_PanelApplet*, _GladeXML*)': /build/buildd/apt-watch-0.3.2/ui-gnome/prefs-package-manager.cc:384: undefined reference to `glade_xml_get_widget' prefs-notify.o: In function `std::basic_stringchar, std::char_traitschar, std::allocatorchar ::_Rep::_M_dispose(std::allocatorchar const)': /usr/include/c++/4.1.3/bits/basic_string.h:233: undefined reference to `glade_xml_get_widget' collect2: ld returned 1 exit status make[4]: *** [apt-watch] Error 1 make[4]: Leaving directory `/build/buildd/apt-watch-0.3.2/ui-gnome' make[3]: *** [all-recursive] Error 1 make[3]: Leaving directory `/build/buildd/apt-watch-0.3.2/ui-gnome' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/build/buildd/apt-watch-0.3.2' make[1]: *** [all-recursive-am] Error 2 make[1]: Leaving directory `/build/buildd/apt-watch-0.3.2' make: *** [build-stamp] Error 2 ** Build finished at 20070630-1157 FAILED [dpkg-buildpackage died] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#416824: klaptopdaemon: lock hibernate allowing unauthorised access [EMAIL PROTECTED]
On Tue, Jun 26, 2007 at 11:06:37PM +0200, Ana Guerrero wrote: On Fri, Mar 30, 2007 at 03:39:02PM +0100, Sheridan Hutchinson wrote: Package: klaptopdaemon Version: 4:3.5.5-3 Severity: grave Tags: security Justification: user security hole ... I have uploaded packages with a new patch from Raul at: deb http://people.debian.org/~ana/kdeutils/ ./ Test it please! I have re-uploaded the packages applying the right patch.. Ana -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431327: muse - FTBFS: error: 'lash_get_fqn' was not declared in this scope
Package: muse Version: 0.8.1a-4+b1 Severity: serious There was an error while trying to autobuild your package: Automatic build of muse_0.8.1a-4+b1 on lxdebian.bfinv.de by sbuild/s390 98 [...] if g++ -DHAVE_CONFIG_H -I. -I. -I.. -Imidiedit -Iarranger -Iliste -Iwidgets -Imixer -Idriver -Iwaveedit -Implugins -Iinstruments -DINSTPREFIX=\/usr\ -g -fno-exceptions -Wall -W -D_GNU_SOURCE -D_REENTRANT -DQT_CLEAN_NAMESPACE -DQT_NO_COMPAT -I.. -I../muse/widgets -I/usr/include/qt3 -I.. -I../synti -I../muse/widgets -DQT_SHARED -DQT_THREAD_SUPPORT -DQT_PLUGIN -I/usr/include/lash-1.0 -I/usr/include/alsa -Wall -O2 -MT app.o -MD -MP -MF .deps/app.Tpo -c -o app.o app.cpp; \ then mv -f .deps/app.Tpo .deps/app.Po; else rm -f .deps/app.Tpo; exit 1; fi ./memory.h: In member function 'void* Pool::alloc(size_t)': ./memory.h:54: warning: format '%d' expects type 'int', but argument 2 has type 'size_t' ./memory.h: In member function 'void Pool::free(void*, size_t)': ./memory.h:72: warning: format '%d' expects type 'int', but argument 2 has type 'size_t' widgets/canvas.h: At global scope: widgets/canvas.h:93: warning: unused parameter 'item' widgets/canvas.h:111: warning: unused parameter 'item' widgets/canvas.h:111: warning: unused parameter 'n' widgets/canvas.h:111: warning: unused parameter 'pt' midiedit/drumedit.h:61: warning: 'class DHeaderTip' has virtual functions but non-virtual destructor ./synth.h:75: warning: 'class SynthIF' has virtual functions but non-virtual destructor ./synth.h:173: warning: 'class MessSynthIF' has virtual functions but non-virtual destructor app.cpp: In member function 'void MusE::toplevelDeleted(long unsigned int)': app.cpp:1642: warning: format '%x' expects type 'unsigned int', but argument 2 has type 'long unsigned int' app.cpp: At global scope: app.cpp:1766: warning: unused parameter 'e' app.cpp: In member function 'void MusE::lash_idle_cb()': app.cpp:2720: error: 'lash_get_fqn' was not declared in this scope app.cpp:2735: error: 'lash_get_fqn' was not declared in this scope make[5]: *** [app.o] Error 1 make[5]: Leaving directory `/build/buildd/muse-0.8.1a/muse' make[4]: *** [all-recursive] Error 1 make[4]: Leaving directory `/build/buildd/muse-0.8.1a/muse' make[3]: *** [all] Error 2 make[3]: Leaving directory `/build/buildd/muse-0.8.1a/muse' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/build/buildd/muse-0.8.1a' make[1]: *** [all] Error 2 make[1]: Leaving directory `/build/buildd/muse-0.8.1a' make: *** [build-stamp] Error 2 ** Build finished at 20070626-2259 FAILED [dpkg-buildpackage died] -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
Am Sonntag, 1. Juli 2007 schrieb Michael Prokop: Package: initramfs-tools Severity: grave Justification: renders package unusable Booting with 'root=UUID=...' fails, it just hangs at Waiting for root file system... and you can't boot your system anymore unless you fall back to root=/dev/... syntax. It's a problem of initramfs-tools 0.88. It works fine with 0.87b. regards, -mika- This could be caused by #427643, because all the necessary files to get the UUID (and LABEL in my case) links are not copied into the initramfs. regards, Jörg -- PGP Key: send mail with subject 'SEND PGP-KEY' PGP Key-ID: FD 4E 21 1D PGP Fingerprint: 388A872AFC5649D3 BCEC65778BE0C605
Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated
Package: gsambad
Version: 0.1.5-5
Severity: grave
Usertags: sourcescan
*** Please type your report below this line ***
Security issue: CVE-2007-2838
The gsambad package contains a binary (which may only be
executed by the root user) with the following code in it:
if((fp=popen(touch /tmp/gsambadtmp chmod 600 /tmp/gsambadtmp
smbstatus 21 /tmp/gsambadtmp, w))==NULL)
{
/* Dont show a popup */
return;
}
This can be used to create/trash arbitary files upon the system with
a symlink attack.
Steve
--
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431332: CVE-2007-2837: Arbitary file removal
Package: fireflier-server
Version: 1.1.6-3
Severity: grave
Usertags: sourcescan
*** Please type your report below this line ***
Security issue: CVE-2007-2837.
The server, fireflierd, runs with root privileges and the code
contains this gem which I think speaks for itself:
string getRule(unsigned int chainid, int rulenum)
{
...
cmd=rm -f /tmp/fireflier.rules touch /tmp/fireflier.rules
chmod 0700 /tmp/fireflier.rules ;
cmd+=IPTABLES_SAVE;
cmd+= /tmp/fireflier.rules;
if(DEBUG)
coutcmd: cmdendl;
system(cmd.c_str());
...
}
This contains several race conditions, and can be trivially exploited to
remove any file on the server as root.
For example run this as a user inside GNU screen:
[EMAIL PROTECTED]:~$ while true; do ln -s /etc/passwd
/tmp/fireflier.rules; done
Wait for a root user to fetch/update/delete a rule using one of the available
clients, and the /etc/passwd file will be removed.
Steve
--
# Kink-Friendly Dating
http://ctrl-alt-date.com/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#424794: marked as done (gforge-plugin-scmcvs: affected by php4-removal)
Your message dated Sun, 01 Jul 2007 18:32:06 + with message-id [EMAIL PROTECTED] and subject line Bug#424794: fixed in gforge-plugin-scmcvs 4.5.14-7 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: gforge-plugin-scmcvs Severity: serious User: [EMAIL PROTECTED] Usertags: php4-removal This package has been identified as affected by the removal of php4 in debian. As php4 will soon be removed, it is very important that we: - update the dependencies of all applicable packages to coexist with php5 - remove source and/or binary packages which have no use without php4 for more information on what may need to be done, please see http://wiki.debian.org/PHP4Removal if you have any questions, please contact the debian php maintainers [EMAIL PROTECTED] thanks! ---End Message--- ---BeginMessage--- Source: gforge-plugin-scmcvs Source-Version: 4.5.14-7 We believe that the bug you reported is fixed in the latest version of gforge-plugin-scmcvs, which is due to be installed in the Debian FTP archive: gforge-plugin-scmcvs_4.5.14-7.dsc to pool/main/g/gforge-plugin-scmcvs/gforge-plugin-scmcvs_4.5.14-7.dsc gforge-plugin-scmcvs_4.5.14-7.tar.gz to pool/main/g/gforge-plugin-scmcvs/gforge-plugin-scmcvs_4.5.14-7.tar.gz gforge-plugin-scmcvs_4.5.14-7_all.deb to pool/main/g/gforge-plugin-scmcvs/gforge-plugin-scmcvs_4.5.14-7_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Roland Mas [EMAIL PROTECTED] (supplier of updated gforge-plugin-scmcvs package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:13:08 +0200 Source: gforge-plugin-scmcvs Binary: gforge-plugin-scmcvs Architecture: source all Version: 4.5.14-7 Distribution: unstable Urgency: low Maintainer: Roland Mas [EMAIL PROTECTED] Changed-By: Roland Mas [EMAIL PROTECTED] Description: gforge-plugin-scmcvs - cvs plugin for GForge Closes: 424794 Changes: gforge-plugin-scmcvs (4.5.14-7) unstable; urgency=low . * Removed support for php4 (closes: #424794). Files: 3d759f96dcd9c2b0ad60e9786a49384d 588 devel optional gforge-plugin-scmcvs_4.5.14-7.dsc 6cdf04d609556c94a432732e0a809afa 143416 devel optional gforge-plugin-scmcvs_4.5.14-7.tar.gz f7fe19787d06f33fa769418587d7dbf1 92022 devel optional gforge-plugin-scmcvs_4.5.14-7_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGh/ELDqdWtRRIQ/URAqAnAKChEJrWMRwi2tb7XoODdQwE24E8cACeIFek RCrks8TsrKZm3fqhoQLuGL8= =6jl0 -END PGP SIGNATURE- ---End Message---
Bug#424792: marked as done (gforge-web-apache: affected by php4-removal)
Your message dated Sun, 01 Jul 2007 18:32:05 + with message-id [EMAIL PROTECTED] and subject line Bug#424792: fixed in gforge 4.5.14-23 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: gforge-web-apache Severity: serious User: [EMAIL PROTECTED] Usertags: php4-removal This package has been identified as affected by the removal of php4 in debian. As php4 will soon be removed, it is very important that we: - update the dependencies of all applicable packages to coexist with php5 - remove source and/or binary packages which have no use without php4 for more information on what may need to be done, please see http://wiki.debian.org/PHP4Removal if you have any questions, please contact the debian php maintainers [EMAIL PROTECTED] thanks! ---End Message--- ---BeginMessage--- Source: gforge Source-Version: 4.5.14-23 We believe that the bug you reported is fixed in the latest version of gforge, which is due to be installed in the Debian FTP archive: gforge-common_4.5.14-23_all.deb to pool/main/g/gforge/gforge-common_4.5.14-23_all.deb gforge-db-postgresql_4.5.14-23_all.deb to pool/main/g/gforge/gforge-db-postgresql_4.5.14-23_all.deb gforge-dns-bind9_4.5.14-23_all.deb to pool/main/g/gforge/gforge-dns-bind9_4.5.14-23_all.deb gforge-ftp-proftpd_4.5.14-23_all.deb to pool/main/g/gforge/gforge-ftp-proftpd_4.5.14-23_all.deb gforge-ldap-openldap_4.5.14-23_all.deb to pool/main/g/gforge/gforge-ldap-openldap_4.5.14-23_all.deb gforge-lists-mailman_4.5.14-23_all.deb to pool/main/g/gforge/gforge-lists-mailman_4.5.14-23_all.deb gforge-mta-courier_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-courier_4.5.14-23_all.deb gforge-mta-exim4_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-exim4_4.5.14-23_all.deb gforge-mta-postfix_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-postfix_4.5.14-23_all.deb gforge-shell-ldap_4.5.14-23_all.deb to pool/main/g/gforge/gforge-shell-ldap_4.5.14-23_all.deb gforge-shell-postgresql_4.5.14-23_all.deb to pool/main/g/gforge/gforge-shell-postgresql_4.5.14-23_all.deb gforge-web-apache_4.5.14-23_all.deb to pool/main/g/gforge/gforge-web-apache_4.5.14-23_all.deb gforge_4.5.14-23.diff.gz to pool/main/g/gforge/gforge_4.5.14-23.diff.gz gforge_4.5.14-23.dsc to pool/main/g/gforge/gforge_4.5.14-23.dsc gforge_4.5.14-23_all.deb to pool/main/g/gforge/gforge_4.5.14-23_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Roland Mas [EMAIL PROTECTED] (supplier of updated gforge package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:10:40 +0200 Source: gforge Binary: gforge-lists-mailman gforge-db-postgresql gforge-mta-postfix gforge-shell-ldap gforge gforge-common gforge-web-apache gforge-mta-courier gforge-ftp-proftpd gforge-shell-postgresql gforge-mta-exim4 gforge-dns-bind9 gforge-ldap-openldap Architecture: source all Version: 4.5.14-23 Distribution: unstable Urgency: low Maintainer: Roland Mas [EMAIL PROTECTED] Changed-By: Roland Mas [EMAIL PROTECTED] Description: gforge - collaborative development tool - meta-package gforge-common - collaborative development tool - shared files gforge-db-postgresql - collaborative development tool - database (using PostgreSQL) gforge-dns-bind9 - collaborative development tool - DNS management (using Bind9) gforge-ftp-proftpd - collaborative development tool - FTP management (using ProFTPd) gforge-ldap-openldap - collaborative development tool - LDAP directory (using OpenLDAP) gforge-lists-mailman - collaborative development tool - mailing-lists (using Mailman) gforge-mta-courier - collaborative development tool - mail tools (using Courier) gforge-mta-exim4 - collaborative development tool - mail tools (using Exim 4) gforge-mta-postfix - collaborative development tool - mail tools (using Postfix) gforge-shell-ldap - collaborative development tool - shell accounts (using LDAP) gforge-shell-postgresql - collaborative development tool - shell accounts (using PostgreSQL gforge-web-apache - collaborative
Bug#424786: marked as done (gforge-db-postgresql: affected by php4-removal)
Your message dated Sun, 01 Jul 2007 18:32:05 + with message-id [EMAIL PROTECTED] and subject line Bug#424786: fixed in gforge 4.5.14-23 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: gforge-db-postgresql Severity: serious User: [EMAIL PROTECTED] Usertags: php4-removal This package has been identified as affected by the removal of php4 in debian. As php4 will soon be removed, it is very important that we: - update the dependencies of all applicable packages to coexist with php5 - remove source and/or binary packages which have no use without php4 for more information on what may need to be done, please see http://wiki.debian.org/PHP4Removal if you have any questions, please contact the debian php maintainers [EMAIL PROTECTED] thanks! ---End Message--- ---BeginMessage--- Source: gforge Source-Version: 4.5.14-23 We believe that the bug you reported is fixed in the latest version of gforge, which is due to be installed in the Debian FTP archive: gforge-common_4.5.14-23_all.deb to pool/main/g/gforge/gforge-common_4.5.14-23_all.deb gforge-db-postgresql_4.5.14-23_all.deb to pool/main/g/gforge/gforge-db-postgresql_4.5.14-23_all.deb gforge-dns-bind9_4.5.14-23_all.deb to pool/main/g/gforge/gforge-dns-bind9_4.5.14-23_all.deb gforge-ftp-proftpd_4.5.14-23_all.deb to pool/main/g/gforge/gforge-ftp-proftpd_4.5.14-23_all.deb gforge-ldap-openldap_4.5.14-23_all.deb to pool/main/g/gforge/gforge-ldap-openldap_4.5.14-23_all.deb gforge-lists-mailman_4.5.14-23_all.deb to pool/main/g/gforge/gforge-lists-mailman_4.5.14-23_all.deb gforge-mta-courier_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-courier_4.5.14-23_all.deb gforge-mta-exim4_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-exim4_4.5.14-23_all.deb gforge-mta-postfix_4.5.14-23_all.deb to pool/main/g/gforge/gforge-mta-postfix_4.5.14-23_all.deb gforge-shell-ldap_4.5.14-23_all.deb to pool/main/g/gforge/gforge-shell-ldap_4.5.14-23_all.deb gforge-shell-postgresql_4.5.14-23_all.deb to pool/main/g/gforge/gforge-shell-postgresql_4.5.14-23_all.deb gforge-web-apache_4.5.14-23_all.deb to pool/main/g/gforge/gforge-web-apache_4.5.14-23_all.deb gforge_4.5.14-23.diff.gz to pool/main/g/gforge/gforge_4.5.14-23.diff.gz gforge_4.5.14-23.dsc to pool/main/g/gforge/gforge_4.5.14-23.dsc gforge_4.5.14-23_all.deb to pool/main/g/gforge/gforge_4.5.14-23_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Roland Mas [EMAIL PROTECTED] (supplier of updated gforge package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:10:40 +0200 Source: gforge Binary: gforge-lists-mailman gforge-db-postgresql gforge-mta-postfix gforge-shell-ldap gforge gforge-common gforge-web-apache gforge-mta-courier gforge-ftp-proftpd gforge-shell-postgresql gforge-mta-exim4 gforge-dns-bind9 gforge-ldap-openldap Architecture: source all Version: 4.5.14-23 Distribution: unstable Urgency: low Maintainer: Roland Mas [EMAIL PROTECTED] Changed-By: Roland Mas [EMAIL PROTECTED] Description: gforge - collaborative development tool - meta-package gforge-common - collaborative development tool - shared files gforge-db-postgresql - collaborative development tool - database (using PostgreSQL) gforge-dns-bind9 - collaborative development tool - DNS management (using Bind9) gforge-ftp-proftpd - collaborative development tool - FTP management (using ProFTPd) gforge-ldap-openldap - collaborative development tool - LDAP directory (using OpenLDAP) gforge-lists-mailman - collaborative development tool - mailing-lists (using Mailman) gforge-mta-courier - collaborative development tool - mail tools (using Courier) gforge-mta-exim4 - collaborative development tool - mail tools (using Exim 4) gforge-mta-postfix - collaborative development tool - mail tools (using Postfix) gforge-shell-ldap - collaborative development tool - shell accounts (using LDAP) gforge-shell-postgresql - collaborative development tool - shell accounts (using PostgreSQL gforge-web-apache -
Bug#431325: marked as done (newsbeuter - FTBFS: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)')
Your message dated Sun, 01 Jul 2007 18:47:04 + with message-id [EMAIL PROTECTED] and subject line Bug#431325: fixed in newsbeuter 0.4-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: newsbeuter Version: 0.4-2+b2 Severity: serious There was an error while trying to autobuild your package: Automatic build of newsbeuter_0.4-2+b2 on debian-31.osdl.marist.edu by sbuild/s390 98 [...] c++ -ggdb -I./include -I./stfl -I. -I/usr/local/include -I/sw/include -Wall -D_ENABLE_NLS -DLOCALEDIR=\/usr/share/locale\ -DPACKAGE=\newsbeuter\ -o src/controller.o -c src/controller.cpp src/controller.cpp: In member function 'void newsbeuter::controller::import_opml(const char*)': src/controller.cpp:422: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)' src/controller.cpp:428: error: cannot convert 'nxml_error_t' to 'nxml_t*' for argument '1' to 'char* nxml_strerror(nxml_t*, nxml_error_t)' make[1]: *** [src/controller.o] Error 1 make[1]: Leaving directory `/build/buildd/newsbeuter-0.4' make: *** [build-stamp] Error 2 ** Build finished at 20070701-1232 FAILED [dpkg-buildpackage died] ---End Message--- ---BeginMessage--- Source: newsbeuter Source-Version: 0.4-3 We believe that the bug you reported is fixed in the latest version of newsbeuter, which is due to be installed in the Debian FTP archive: newsbeuter_0.4-3.diff.gz to pool/main/n/newsbeuter/newsbeuter_0.4-3.diff.gz newsbeuter_0.4-3.dsc to pool/main/n/newsbeuter/newsbeuter_0.4-3.dsc newsbeuter_0.4-3_i386.deb to pool/main/n/newsbeuter/newsbeuter_0.4-3_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Nico Golde [EMAIL PROTECTED] (supplier of updated newsbeuter package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 18:25:14 + Source: newsbeuter Binary: newsbeuter Architecture: source i386 Version: 0.4-3 Distribution: unstable Urgency: low Maintainer: Nico Golde [EMAIL PROTECTED] Changed-By: Nico Golde [EMAIL PROTECTED] Description: newsbeuter - text mode rss feed reader with podcast support Closes: 431325 Changes: newsbeuter (0.4-3) unstable; urgency=low . * Changed calls to nxml_strerror to fix broken ABI change in libnxml (Closes: #431325). Files: d2fb0ddf7d88ecf5ccb3cb241300901d 662 net optional newsbeuter_0.4-3.dsc 47095581569c8b872bcc3f585a5edab6 4795 net optional newsbeuter_0.4-3.diff.gz 5ab13182c9856a5b1544b91f92c5447f 239088 net optional newsbeuter_0.4-3_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGh/NEHYflSXNkfP8RAldgAJ9Lx3XjxDwEITdx57vKjVfqtJkW9ACggMmM BwSon4z4GlKb93hN85N9sos= =hAR5 -END PGP SIGNATURE- ---End Message---
Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated
Steve Kemp wrote: Security issue: CVE-2007-2838 The gsambad package contains a binary (which may only be executed by the root user) with the following code in it: I assume that the 0.1.4-2etch1 upload a few minutes ago was a security upload of yours, hence I'll wait until this appears and upload then a fixed package to sid. Thanks, Daniel -- Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist Email: [EMAIL PROTECTED] Internet: http://people.panthera-systems.net/~daniel-baumann/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#301702: marked as done (apache2 start failed during restart when logs rotated)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2 Version: 2.0.53-5 apache stopped then started from logrotate postrotate script: /etc/init.d/apache2 restart When starting it can't bind to port 80 because Address in use. It doesn't any errors to logs because no error.log exists (it's rotated you remember?). So we and up with apache silently falling each week. I suggest to use reload rather then restart for postrotate script. I am using Debian GNU/Linux 3.1, custom kernel 2.4.26-1-686 and stock libc6 2.3.2.ds1-16. ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2 apache2-utils - utility programs for webservers apache2.2-common - Next generation, scalable, extendable web server Closes: 289289 291841 298689 305933 350286 350822 384682 391817 399056 410331 412580 414429 415698 418536 419539 427050 428887 430116 431048 431125 Changes: apache2 (2.2.4-1) unstable; urgency=medium . [ Stefan Fritsch ] * Urgency medium for security fix * Fix CVE-2007-1863: DoS in mod_cache * New upstream version (Closes: #427050) - Fixes proxy: error reading status line from remote server (Closes: #410331) * Fix CVE-2007-1862: mod_mem_cache DoS (introduced in 2.2.4) * Change logrotate script to use reload instead of restart. (Closes: #298689) * chmod o-rx /var/log/apache2 (Closes: #291841) * chmod o-x suexec (Closes: #431048) * Update patch for
Bug#314878: marked as done (apache2-common: Do 'reload' instead of 'restart' in logrotate.d/apache2)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2-common Severity: important Version: 2.0.54-4 In /etc/logrotate.d/apache2, `/etc/init.d/apache2 restart` is invoked to rotate Apache2 logs. `/etc/init.d/apachw2 restart` stops and starts Apache2, not reloads. There are 2 problems in this situation: 1. Web service by Apache2 is stopped in a short time. 2. Web service by Apache2 is NOT started if Apache2 configuration is broken. Use `/etc/init.d/apache2 reload` in this situation. -- -- Name: SATOH Fumiyasu -- Home: http://www.sfo.jp (in Japanese only) -- Mail: fumiya at net-thrust.com, samba.gr.jp, namazu.org or ... ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2 apache2-utils - utility programs for webservers apache2.2-common - Next generation, scalable, extendable web server Closes: 289289 291841 298689 305933 350286 350822 384682 391817 399056 410331 412580 414429 415698 418536 419539 427050 428887 430116 431048 431125 Changes: apache2 (2.2.4-1) unstable; urgency=medium . [ Stefan Fritsch ] * Urgency medium for security fix * Fix CVE-2007-1863: DoS in mod_cache * New upstream version (Closes: #427050) - Fixes proxy: error reading status line from remote server (Closes: #410331) * Fix CVE-2007-1862: mod_mem_cache DoS (introduced in 2.2.4) * Change logrotate script to use reload instead of restart. (Closes: #298689) *
Bug#325594: marked as done (apache2: Unable to restart after security upgrade)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2 Version: 2.0.54-4 Severity: normal Hi, After I installed this security upgrade, Apache2 couldn't restart anymore. Setting up libapache2-mod-php4 (4.3.10-16) ... Forcing reload of web server: Apache2(98)Address already in use: make_sock: could not bind to address [::]:443 no listening sockets available, shutting down Unable to open logs invoke-rc.d: initscript apache2, action force-reload failed. # invoke-rc.d apache2 start Starting web server: Apache2(98)Address already in use: make_sock: could not bind to address [::]:443 no listening sockets available, shutting down Unable to open logs invoke-rc.d: initscript apache2, action start failed. # -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing'), (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.8-2-686-smp Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.0.54-4 traditional model for Apache2 apache2 recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2 apache2-utils - utility programs for webservers apache2.2-common - Next generation, scalable, extendable web server Closes: 289289 291841 298689 305933 350286 350822 384682 391817 399056 410331
Bug#429516: marked as done (apache2-common logrotate : could reload be used instead of restart ?)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2-commonVersion: 2.0.54-5sarge1Package: apache2.2-commonVersion: 2.2.3-4In the logrotate config file for Apache (/etc/logrotate.d/apache2), the restart command is used to tell Apache to use the new logfiles after they have been rotated. This is kind of harsh since it's a full stop start of the server. It also causes problems for people using SSL certificates for which the key is encrypted, and thus needs a passphrase to be typed in everytime Apache starts.Here's the relevant part of /etc/logrotate.d/apache2 :postrotate if [ -f /var/run/apache2.pid ]; then /etc/init.d/apache2 restart /dev/nullfi endscriptMay I suggest that restart be changed for reload, which has the same effect regarding logfile rotation, does not require the passphrase to be re-entered, and is less harsh overall.postrotateif [ -f /var/run/apache2.pid ]; then/etc/init.d/apache2 reload /dev/nullfiendscript I am using Debian 3.1 (sarge) with Apache2 and also Debian 4.0 (etch) with Apache 2.2.Thank you. _ News, entertainment and everything you care about at Live.com. Get it now! http://www.live.com/getstarted.aspx---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for
Bug#400455: marked as done (apache2.2-common: /etc/init.d/apache2 restart can kill apache)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2.2-common Version: 2.2.3-3.1 Severity: normal *** Please type your report below this line *** Today logrotate killed my apache. The last lines in error.log.1 are: [Sun Nov 26 06:25:25 2006] [warn] child process 6244 still did not exit, sending a SIGTERM [Sun Nov 26 06:25:27 2006] [warn] child process 6244 still did not exit, sending a SIGTERM [Sun Nov 26 06:25:29 2006] [warn] child process 6244 still did not exit, sending a SIGTERM [Sun Nov 26 06:25:31 2006] [error] child process 6244 still did not exit, sending a SIGKILL [Sun Nov 26 06:25:32 2006] [notice] caught SIGTERM, shutting down Apache did not come up again with a new error.log file. I could not reproduce the problem because I don't know how I can force the apache children to not exit on SIGTERM. Logrotate uses /etc/init.d/apache2 restart to restart apache, perhaps the sleep 10 delay in the initscript is too short in this case. Why doesn't the initscript use apache2ctl restart? Perhaps logrotate could be changed to use /etc/init.d/apache2 reload, or the restart part of the initscript could be made more reliable. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (900, 'testing') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-2-amd64 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Versions of packages apache2.2-common depends on: ii apache2-utils 2.2.3-3.1 utility programs for webservers ii libmagic1 4.17-4 File type determination library us ii lsb-base 3.1-15 Linux Standard Base 3.1 init scrip ii mime-support 3.37-1 MIME files 'mime.types' 'mailcap ii net-tools 1.60-17The NET-3 networking toolkit apache2.2-common recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL
Bug#425248: marked as done (apache2.2-common: apache2 may be killed by logrotate job)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2.2-common Version: 2.2.3-4 Severity: normal There are two differents problems, in /etc/init.d/apache2 restart function you use sleep 10 between start and stop, but 10 seconds is not enough in the case where some childs cannot be killed easily. So it tries to stop the server, and tries to start it before it is stopped so it is not able to start the server. This is not very important if no script are calling restart. But /etc/logrotate.d/apache2 does. A good idea should be to use reload instead of restart. In the first case you may kill legitimate process and you do at least ten seconds of service outage (or more if the server doesn't restart...) which may be very bad on high availability services, in the second case you may loose some lines of logs and it's all. (needless to say that this happened to me several times) It may be an easy DOS attack, you just have to overload an apache server at 6:25 AM, with the overload it is going to take more than 10 seconds to stop and it will not restart, enjoy ! -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.21.1-grsec Locale: LANG=en_US.ISO-8859-15, LC_CTYPE=en_US.ISO-8859-15 (charmap=ISO-8859-15) Versions of packages apache2.2-common depends on: ii apache2-utils2.2.3-4 utility programs for webservers ii libmagic14.17-5etch1 File type determination library us ii lsb-base 3.1-23.1Linux Standard Base 3.1 init scrip ii mime-support 3.39-1 MIME files 'mime.types' 'mailcap ii net-tools1.60-17 The NET-3 networking toolkit ii procps 1:3.2.7-3 /proc file system utilities apache2.2-common recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache
Bug#298689: marked as done (apache2: logrotate script and new init script break ssl certificates with passphrase)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2 Version: 2.0.53-5 Severity: important the logrotate script for apache2 calls /etc/init.d/apache2 restart in its postrotate command. The old init-script called $APACHE2CTL restart and everything was working. The new init-script (provided by 2.0.53-5) has changed the restart command to apache stop and $APACHE2CTL startssl. This breaks the logrotate postrotate for servers with ssl certificates that have a passphrase set for them, as the restart command hangs and noone can enter the passphrase. A better solution would be to call the apache2 init script with the reload command in the logrotate postrotate. Greetings Heiko -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.4.25 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.0.53-5 traditional model for Apache2 -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2 apache2-utils - utility programs for webservers apache2.2-common - Next generation, scalable, extendable web server Closes: 289289 291841 298689 305933 350286 350822 384682 391817 399056 410331 412580 414429 415698 418536 419539 427050 428887 430116 431048 431125 Changes: apache2 (2.2.4-1) unstable; urgency=medium . [ Stefan
Bug#398223: marked as done (apache2: [notice] caught SIGTERM, shutting down)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: apache2 Version: 2.2.3-3 Severity: important Twice in the past two weeks apache2 has shut down spontaneously for no apparent reason. The error log ends with the following: [Sun Nov 12 06:29:15 2006] [warn] child process 13051 still did not exit, sending a SIGTERM [Sun Nov 12 06:29:17 2006] [warn] child process 13051 still did not exit, sending a SIGTERM [Sun Nov 12 06:29:19 2006] [warn] child process 13051 still did not exit, sending a SIGTERM [Sun Nov 12 06:29:21 2006] [error] child process 13051 still did not exit, sending a SIGKILL [Sun Nov 12 06:29:22 2006] [notice] caught SIGTERM, shutting down And can see no other signs of problems, it just isn't running any more. The only thing that has changed recently is that I have add SSL to one of my websites. -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (990, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.17-tp600e.2 Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages apache2 depends on: ii apache2-mpm-prefork 2.2.3-3Traditional model for Apache HTTPD apache2 recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2 apache2-utils - utility programs for webservers apache2.2-common - Next generation, scalable,
Bug#334824: marked as done (logrotate: Postrotate documentation - Why restart?)
Your message dated Sun, 01 Jul 2007 19:02:03 + with message-id [EMAIL PROTECTED] and subject line Bug#298689: fixed in apache2 2.2.4-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: logrotate Version: 3.7-5 Severity: wishlist I don't understand why there is a need to restart the server in a postrotate using apache2 as an example. Could you or rather docs explain this better? :) I noticed this on RH machine for example: postrotate /bin/kill -HUP `cat /var/run/httpd.pid 2/dev/null` 2 /dev/null || true Best wishes, -- Package-specific info: Contents of /etc/logrotate.d total 7 -rw-r--r-- 1 root root 240 2005-05-12 15:36 apache2 -rw-r--r-- 1 root root 79 2004-09-29 04:44 aptitude -rw-r--r-- 1 root root 384 2005-02-18 03:59 base-config -rw-r--r-- 1 root root 170 2005-01-27 23:57 exim4-base -rw-r--r-- 1 root root 1116 2005-05-18 17:07 mysql-server -rw-r--r-- 1 root root 94 2004-12-31 03:26 ppp -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-2-386 Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Versions of packages logrotate depends on: ii base-passwd 3.5.9Debian base system master password ii cron3.0pl1-86management of regular background p ii libc6 2.3.2.ds1-22 GNU C Library: Shared libraries an ii libpopt01.7-5lib for parsing cmdline parameters -- no debconf information ---End Message--- ---BeginMessage--- Source: apache2 Source-Version: 2.2.4-1 We believe that the bug you reported is fixed in the latest version of apache2, which is due to be installed in the Debian FTP archive: apache2-doc_2.2.4-1_all.deb to pool/main/a/apache2/apache2-doc_2.2.4-1_all.deb apache2-mpm-event_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-event_2.2.4-1_i386.deb apache2-mpm-perchild_2.2.4-1_all.deb to pool/main/a/apache2/apache2-mpm-perchild_2.2.4-1_all.deb apache2-mpm-prefork_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-prefork_2.2.4-1_i386.deb apache2-mpm-worker_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-mpm-worker_2.2.4-1_i386.deb apache2-prefork-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-prefork-dev_2.2.4-1_i386.deb apache2-src_2.2.4-1_all.deb to pool/main/a/apache2/apache2-src_2.2.4-1_all.deb apache2-threaded-dev_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-threaded-dev_2.2.4-1_i386.deb apache2-utils_2.2.4-1_i386.deb to pool/main/a/apache2/apache2-utils_2.2.4-1_i386.deb apache2.2-common_2.2.4-1_i386.deb to pool/main/a/apache2/apache2.2-common_2.2.4-1_i386.deb apache2_2.2.4-1.diff.gz to pool/main/a/apache2/apache2_2.2.4-1.diff.gz apache2_2.2.4-1.dsc to pool/main/a/apache2/apache2_2.2.4-1.dsc apache2_2.2.4-1_all.deb to pool/main/a/apache2/apache2_2.2.4-1_all.deb apache2_2.2.4.orig.tar.gz to pool/main/a/apache2/apache2_2.2.4.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Stefan Fritsch [EMAIL PROTECTED] (supplier of updated apache2 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:57:51 +0200 Source: apache2 Binary: apache2-utils apache2-prefork-dev apache2 apache2-mpm-prefork apache2-doc apache2-mpm-event apache2.2-common apache2-mpm-worker apache2-src apache2-threaded-dev apache2-mpm-perchild Architecture: source all i386 Version: 2.2.4-1 Distribution: unstable Urgency: medium Maintainer: Debian Apache Maintainers [EMAIL PROTECTED] Changed-By: Stefan Fritsch [EMAIL PROTECTED] Description: apache2- Next generation, scalable, extendable web server apache2-doc - documentation for apache2 apache2-mpm-event - Event driven model for Apache HTTPD apache2-mpm-perchild - Transitional package - please remove apache2-mpm-prefork - Traditional model for Apache HTTPD apache2-mpm-worker - High speed threaded model for Apache HTTPD apache2-prefork-dev - development headers for apache2 apache2-src - Apache source code apache2-threaded-dev - development headers for apache2
Bug#431336: CVE-2007-2835 : Buffer overflow.
Package: unicon-imc2
Version: 3.0.4-11
Severity: grave
Usertags: sourcescan
*** Please type your report below this line ***
CVE-2007-2835 : Allows local root compromise via zhcon.
Anyway, the setuid(0) zhcon application links to this library,
which contains a buffer overflow which may be used to gain root.
(Actually any application using this library can be exploited;
this is the only setuid one I could spot.)
The source of this problem is ./unicon/ImmModules/cce/CCE_pinyin.c:
static int
IMM_Flush ()
{
char name[256];
sprintf(name,%s/.pyinput/usrphrase.tab,getenv(HOME));
SaveUsrPhrase(name);
sprintf(name,%s/.pyinput/sysfrequency.tab,getenv(HOME));
SavePhraseFrequency(name);
return 1;
}
There are similar problems in the file /unicon/ImmModules/cce/xl_pinyin.c
too.
Steve
--
# Commercial Debian GNU/Linux Support
http://www.linux-administration.org/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: Re: Bug#431300: ocsinventory-agent: Uninstallable on [!i386 !amd64 !ia64] due to unmet dep on dmidecode
Processing commands for [EMAIL PROTECTED]: reassign 431300 ocsinventory-agent Bug#431300: ocsinventory-agent: Uninstallable on [!i386 !amd64 !ia64] due to unmet dep on dmidecode Bug reassigned from package `ocsinventory-agent' to `ocsinventory-agent'. -- Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#424789: marked as done (gforge-plugin-scmsvn: affected by php4-removal)
Your message dated Sun, 01 Jul 2007 19:17:03 + with message-id [EMAIL PROTECTED] and subject line Bug#424789: fixed in gforge-plugin-scmsvn 4.5.14-6 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: gforge-plugin-scmsvn Severity: serious User: [EMAIL PROTECTED] Usertags: php4-removal This package has been identified as affected by the removal of php4 in debian. As php4 will soon be removed, it is very important that we: - update the dependencies of all applicable packages to coexist with php5 - remove source and/or binary packages which have no use without php4 for more information on what may need to be done, please see http://wiki.debian.org/PHP4Removal if you have any questions, please contact the debian php maintainers [EMAIL PROTECTED] thanks! ---End Message--- ---BeginMessage--- Source: gforge-plugin-scmsvn Source-Version: 4.5.14-6 We believe that the bug you reported is fixed in the latest version of gforge-plugin-scmsvn, which is due to be installed in the Debian FTP archive: gforge-plugin-scmsvn_4.5.14-6.dsc to pool/main/g/gforge-plugin-scmsvn/gforge-plugin-scmsvn_4.5.14-6.dsc gforge-plugin-scmsvn_4.5.14-6.tar.gz to pool/main/g/gforge-plugin-scmsvn/gforge-plugin-scmsvn_4.5.14-6.tar.gz gforge-plugin-scmsvn_4.5.14-6_all.deb to pool/main/g/gforge-plugin-scmsvn/gforge-plugin-scmsvn_4.5.14-6_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Roland Mas [EMAIL PROTECTED] (supplier of updated gforge-plugin-scmsvn package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 19:15:06 +0200 Source: gforge-plugin-scmsvn Binary: gforge-plugin-scmsvn Architecture: source all Version: 4.5.14-6 Distribution: unstable Urgency: low Maintainer: Roland Mas [EMAIL PROTECTED] Changed-By: Roland Mas [EMAIL PROTECTED] Description: gforge-plugin-scmsvn - subversion plugin for GForge Closes: 424789 Changes: gforge-plugin-scmsvn (4.5.14-6) unstable; urgency=low . * Removed support for php4 (closes: #424789). Files: 07d93e90fcbe5f063e5c0d752c2524d6 587 devel optional gforge-plugin-scmsvn_4.5.14-6.dsc 5e5b5348fd7646268f667c22a26dcc1a 81143 devel optional gforge-plugin-scmsvn_4.5.14-6.tar.gz 4998439eb991f2310ebdffc7ad512579 77342 devel optional gforge-plugin-scmsvn_4.5.14-6_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGh/oZDqdWtRRIQ/URAlu9AJ9yCZid1O+XAsCi9WgfPsGHpJeN+QCfZBvu RsMov4Zq7VUDqy15SmxJDJs= =D0CK -END PGP SIGNATURE- ---End Message---
Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated
On Sun Jul 01, 2007 at 20:54:24 +0200, Daniel Baumann wrote:
I assume that the 0.1.4-2etch1 upload a few minutes ago was a security
upload of yours, hence I'll wait until this appears and upload then a
fixed package to sid.
yes that is correct.
If you're happy to upload soon that would be great. I'll attach the
patch I used.
Steve
--
# Commercial Debian GNU/Linux Support
http://www.linux-administration.org/
diff -u gsambad-0.1.4/config.sub gsambad-0.1.4/config.sub
--- gsambad-0.1.4/config.sub
+++ gsambad-0.1.4/config.sub
@@ -4,7 +4,7 @@
# 2000, 2001, 2002, 2003, 2004, 2005, 2006 Free Software Foundation,
# Inc.
-timestamp='2006-09-20'
+timestamp='2006-07-02'
# This file is (in principle) common to ALL GNU software.
# The presence of a machine in this file suggests that SOME GNU software
@@ -276,7 +276,6 @@
| pdp10 | pdp11 | pj | pjl \
| powerpc | powerpc64 | powerpc64le | powerpcle | ppcbe \
| pyramid \
- | score \
| sh | sh[1234] | sh[24]a | sh[23]e | sh[34]eb | sheb | shbe | shle | sh[1234]le | sh3ele \
| sh64 | sh64le \
| sparc | sparc64 | sparc64b | sparc64v | sparc86x | sparclet | sparclite \
@@ -285,7 +284,7 @@
| tahoe | thumb | tic4x | tic80 | tron \
| v850 | v850e \
| we32k \
- | x86 | xc16x | xscale | xscalee[bl] | xstormy16 | xtensa \
+ | x86 | xscale | xscalee[bl] | xstormy16 | xtensa \
| z8k)
basic_machine=$basic_machine-unknown
;;
@@ -368,7 +367,7 @@
| tron-* \
| v850-* | v850e-* | vax-* \
| we32k-* \
- | x86-* | x86_64-* | xc16x-* | xps100-* | xscale-* | xscalee[bl]-* \
+ | x86-* | x86_64-* | xps100-* | xscale-* | xscalee[bl]-* \
| xstormy16-* | xtensa-* \
| ymp-* \
| z8k-*)
@@ -910,10 +909,6 @@
sb1el)
basic_machine=mipsisa64sb1el-unknown
;;
- sde)
- basic_machine=mipsisa32-sde
- os=-elf
- ;;
sei)
basic_machine=mips-sei
os=-seiux
@@ -1371,9 +1366,6 @@
# system, and we'll never get to this point.
case $basic_machine in
-score-*)
- os=-elf
- ;;
spu-*)
os=-elf
;;
diff -u gsambad-0.1.4/debian/changelog gsambad-0.1.4/debian/changelog
--- gsambad-0.1.4/debian/changelog
+++ gsambad-0.1.4/debian/changelog
@@ -1,4 +1,12 @@
-gsambad (0.1.4-2) unstable; urgency=medium
+gsambad (0.1.4-2etch1) stable-security; urgency=high
+
+ * Non-maintainer upload by The Security Team.
+ * Avoid unsafe usage of temporary files.
+[CVE-2007-2838]
+
+ -- Steve Kemp [EMAIL PROTECTED] Thu, 28 Jun 2007 16:47:39 +
+
+gsambad (0.1.4-2) unstable; urgency=medium
* Adjusting the icondir.
* Makeing use of su-to-root in the desktop file.
only in patch2:
unchanged:
--- gsambad-0.1.4.orig/src/populate_conns.c
+++ gsambad-0.1.4/src/populate_conns.c
@@ -48,7 +48,8 @@
long file_size=0, old_pos=0;
gchar *combined=NULL;
gchar *utf8=NULL;
-
+char command_buffer[1024];
+char * filename;
gtk_list_store_clear(widgets-conns_store);
/* This attempt to show useful output is probably quite
@@ -64,20 +65,37 @@
fflush(stdin);
fflush(stdout);
-/* Write the output of smbstatus to a tempfile, FIXME: Static paths and generally notgoodtoday */
-if((fp=popen(touch /tmp/gsambadtmp chmod 600 /tmp/gsambadtmp smbstatus 21 /tmp/gsambadtmp, w))==NULL)
+/* make a secure temporary file */
+filename = tempnam( /tmp, p_c.c );
+
+/* Write the output of smbstatus to a tempfile. */
+snprintf( command_buffer, sizeof(command_buffer) - 1,
+ touch %s chmod 600 %s smbstatus 21 %s,
+ filename, filename, filename );
+
+if((fp=popen(command_buffer, w))==NULL)
{
+/* free memory */
+free( filename );
+
/* Dont show a popup */
return;
}
pclose(fp);
/* We want it in a tempfile so we can scroll around in it properly */
-if((fp=fopen(/tmp/gsambadtmp, r))==NULL) // FIXME: Static paths
+if((fp=fopen(filename, r))==NULL) // FIXME: Static paths
{
+/* free memory */
+free( filename );
+
/* Dont show a popup */
return;
}
+
+/* free memory */
+free( filename );
+
fseek(fp, 0, SEEK_END);
file_size = ftell(fp);
rewind(fp);
Bug#430739: marked as done (Depends on libcurl4 which conflicts with many other packages)
Your message dated Sun, 1 Jul 2007 15:37:26 -0400 with message-id [EMAIL PROTECTED] and subject line Fixed has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: openarena Version: 0.6.0-3+b1 Severity: grave Recently libcurl4 has been replaced with libcurl3 in unstable. This results in nexuiz being not installable. # apt-get install openarena Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. Since you only requested a single operation it is extremely likely that the package is simply not installable and a bug report against that package should be filed. The following information may help to resolve the situation: The following packages have unmet dependencies: openarena: Depends: libcurl4 but it is not installable E: Broken packages This is the same as (already resolved) bug #430450 --- System information. --- Architecture: i386 Kernel: Linux 2.6.21.5-slh-smp-2 Debian Release: lenny/sid 500 unstablewww.debian-multimedia.org 500 unstablesidux.com 500 unstableftp.us.debian.org 50 experimentalftp.us.debian.org 200 testing ftp.us.debian.org --- Package information. --- Depends (Version) | Installed ==-+-== libc6 (= 2.5-5) | 2.5-11 libcurl4-openssl (= 7.16.2-1) | 7.16.2-4 libopenal0a| 1:0.0.8-4 libsdl1.2debian (= 1.2.10-1) | 1.2.11-9 openarena-data (= 0.6.0) | 0.6.0-1 ---End Message--- ---BeginMessage--- binNMU-s should have fixed this. ---End Message---
Bug#427200: marked as done (rquantlib - FTBFS: error: 'QL_IO_INIT' was not declared in this scope)
Your message dated Sun, 01 Jul 2007 19:32:03 + with message-id [EMAIL PROTECTED] and subject line Bug#427200: fixed in rquantlib 0.2.7-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: rquantlib Version: 0.2.6-1 Severity: serious User: [EMAIL PROTECTED] Usertags: qa-ftbfs hi, while doing an archive wide package rebuild your package failed to build from source for the following reason: checking for Boost development files... yes checking Boost version... yes configure: creating ./config.status config.status: creating src/Makevars Completed configuration and ready to build. ** libs make[1]: Entering directory `/build/user/rquantlib-0.2.6/src' g++ -I/usr/share/R/include -I/usr/share/R/include -g -O2 -DUSING_QUANTLIB -I/usr/include -I../RcppSrc -fpic -g0 -c barrier_binary.cpp -o barrier_binary.o g++ -I/usr/share/R/include -I/usr/share/R/include -g -O2 -DUSING_QUANTLIB -I/usr/include -I../RcppSrc -fpic -g0 -c bermudan.cpp -o bermudan.o bermudan.cpp: In function 'void calibrateModel(const boost::shared_ptrQuantLib::ShortRateModel, const std::vectorboost::shared_ptrQuantLib::CalibrationHelper, std::allocatorboost::shared_ptrQuantLib::CalibrationHelper , QuantLib::Real, int*, int*, double**, QuantLib::Size, QuantLib::Size)': bermudan.cpp:28: error: no matching function for call to 'QuantLib::ShortRateModel::calibrate(const std::vectorboost::shared_ptrQuantLib::CalibrationHelper, std::allocatorboost::shared_ptrQuantLib::CalibrationHelper , QuantLib::LevenbergMarquardt)' /usr/include/ql/models/model.hpp:95: note: candidates are: void QuantLib::CalibratedModel::calibrate(const std::vectorboost::shared_ptrQuantLib::CalibrationHelper, std::allocatorboost::shared_ptrQuantLib::CalibrationHelper , QuantLib::OptimizationMethod, const QuantLib::EndCriteria, const QuantLib::Constraint, const std::vectordouble, std::allocatordouble ) bermudan.cpp: In function 'SEXPREC* QL_BermudanSwaption(SEXPREC*, SEXPREC*, SEXPREC*, SEXPREC*, SEXPREC*)': bermudan.cpp:50: error: 'QL_IO_INIT' was not declared in this scope bermudan.cpp:53: error: expected `;' before 'RcppParams' bermudan.cpp:63: error: 'rparam' was not declared in this scope bermudan.cpp:122: error: 'class QuantLib::HandleQuantLib::YieldTermStructure' has no member named 'linkTo' make[1]: *** [bermudan.o] Error 1 make[1]: Leaving directory `/build/user/rquantlib-0.2.6/src' chmod: cannot access `/build/user/rquantlib-0.2.6/debian/r-cran-rquantlib/usr/lib/R/site-library/RQuantLib/libs/*': No such file or directory ERROR: compilation failed for package 'RQuantLib' ** Removing '/build/user/rquantlib-0.2.6/debian/r-cran-rquantlib/usr/lib/R/site-library/RQuantLib' make: *** [R_any_arch] Error 1 The Full Build log is available and can be viewed at: http://people.debian.org/~lucas/logs/2007/06/01/ bye, - michael ---End Message--- ---BeginMessage--- Source: rquantlib Source-Version: 0.2.7-1 We believe that the bug you reported is fixed in the latest version of rquantlib, which is due to be installed in the Debian FTP archive: r-cran-rquantlib_0.2.7-1_i386.deb to pool/main/r/rquantlib/r-cran-rquantlib_0.2.7-1_i386.deb rquantlib_0.2.7-1.diff.gz to pool/main/r/rquantlib/rquantlib_0.2.7-1.diff.gz rquantlib_0.2.7-1.dsc to pool/main/r/rquantlib/rquantlib_0.2.7-1.dsc rquantlib_0.2.7.orig.tar.gz to pool/main/r/rquantlib/rquantlib_0.2.7.orig.tar.gz A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Dirk Eddelbuettel [EMAIL PROTECTED] (supplier of updated rquantlib package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 14:07:30 -0500 Source: rquantlib Binary: r-cran-rquantlib Architecture: source i386 Version: 0.2.7-1 Distribution: unstable Urgency: low Maintainer: Dirk Eddelbuettel [EMAIL PROTECTED] Changed-By: Dirk Eddelbuettel [EMAIL PROTECTED] Description: r-cran-rquantlib - GNU R package interfacing the QuantLib finance library Closes: 427200 Changes: rquantlib (0.2.7-1)
Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated
On Sun Jul 01, 2007 at 21:47:42 +0200, Daniel Baumann wrote: uploaded 0.1.6-2 with your patch and urgency=high, so you probably want to mention this version for testing/sid in the DSA. Great. no offence intended, but i'd be happy if you can next time attach the patch to the bug report right from the beginning. None taken. That was a genuine mistake, I honestly thought I'd copied you into my initial report with the problem. I usually do that so that maintainers aren't caught on the hop. I'll be much more careful to make sure I do that next time. Steve -- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated
Steve Kemp wrote: yes that is correct. thanks. If you're happy to upload soon that would be great. I'll attach the patch I used. uploaded 0.1.6-2 with your patch and urgency=high, so you probably want to mention this version for testing/sid in the DSA. no offence intended, but i'd be happy if you can next time attach the patch to the bug report right from the beginning. Regards and thanks again, Daniel -- Address:Daniel Baumann, Burgunderstrasse 3, CH-4562 Biberist Email: [EMAIL PROTECTED] Internet: http://people.panthera-systems.net/~daniel-baumann/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431336: Patch
Patch we used for the DSA.
diff -u unicon-3.0.4/unicon/ImmModules/cce/CCE_pinyin.c
unicon-3.0.4/unicon/ImmModules/cce/CCE_pinyin.c
--- unicon-3.0.4/unicon/ImmModules/cce/CCE_pinyin.c
+++ unicon-3.0.4/unicon/ImmModules/cce/CCE_pinyin.c
@@ -159,9 +159,9 @@
IMM_Flush ()
{
char name[256];
- sprintf(name,%s/.pyinput/usrphrase.tab,getenv(HOME));
+ snprintf(name,sizeof(name)-1,%s/.pyinput/usrphrase.tab,getenv(HOME));
SaveUsrPhrase(name);
- sprintf(name,%s/.pyinput/sysfrequency.tab,getenv(HOME));
+ snprintf(name,sizeof(name)-1,%s/.pyinput/sysfrequency.tab,getenv(HOME));
SavePhraseFrequency(name);
return 1;
diff -u unicon-3.0.4/unicon/ImmModules/cce/xl_pinyin.c
unicon-3.0.4/unicon/ImmModules/cce/xl_pinyin.c
--- unicon-3.0.4/unicon/ImmModules/cce/xl_pinyin.c
+++ unicon-3.0.4/unicon/ImmModules/cce/xl_pinyin.c
@@ -138,21 +138,21 @@
//Rat: modified for processing user-defined dictionaries
if ((usrhome = getenv (HOME)) != NULL)
{
- sprintf (buf, %s/%s, usrhome, .pyinput);
+ snprintf (buf,sizeof(buf)-1, %s/%s, usrhome, .pyinput);
retval = stat (buf, statbuf);
if ((retval == 0))
{
if ((statbuf.st_mode S_IFMT) == S_IFDIR)
{
- sprintf (buf, %s/%s/%s, usrhome, .pyinput, usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s/%s, usrhome, .pyinput,
usrphrase.tab);
if ( (retval = stat(buf, statbuf)) == 0)
{
if ( statbuf.st_size MIN_USRPHR_SIZE || LoadUsrPhrase (buf)
== -1)
{
printf (Couldn't load %s. Please fix it. size or load
error\n, buf);
- sprintf (buf, %s/%s, szPath,
usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s,
szPath, usrphrase.tab);
if ((retval = access (buf, R_OK)) == 0)
{
if (LoadUsrPhrase (buf) == -1)
@@ -164,7 +164,7 @@
else
{
creat (buf, 0600);
- sprintf (buf, %s/%s, szPath, usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s, szPath,
usrphrase.tab);
if ((retval = access (buf, R_OK)) == 0)
{
if (LoadUsrPhrase (buf) == -1)
@@ -181,10 +181,10 @@
else
{
mkdir (buf, 0700);//Rat: making $HOME/.pyinput
- sprintf (buf, %s/%s/%s, usrhome, .pyinput, usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s/%s, usrhome, .pyinput,
usrphrase.tab);
creat (buf, 0600);//Rat: making $HOME/.pyinput/usrphrase.tab
- sprintf (buf, %s/%s, szPath, usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s, szPath, usrphrase.tab);
if ((retval = access (buf, R_OK)) == 0)
{
if (LoadUsrPhrase (buf) == -1)
@@ -197,7 +197,7 @@
else
{
printf (Sorry, I couldn't find your $HOME.\n);
- sprintf (buf, %s/%s, szPath, usrphrase.tab);
+ snprintf (buf, sizeof(buf)-1, %s/%s, szPath, usrphrase.tab);
printf (Turn to access %s, buf);
if ((retval = access (buf, R_OK)) != 0)
@@ -210,7 +210,7 @@
}
- sprintf(buf,%s/%s/%s,usrhome,.pyinput,sysfrequency.tab);
+ snprintf(buf,sizeof(buf)-1,%s/%s/%s,usrhome,.pyinput,sysfrequency.tab);
if(LoadPhraseFrequency(buf) == -1)
{
creat(buf,0700);
@@ -229,7 +229,7 @@
AdjustPhraseFreq (); // lower the freq to [0,50)
if (usrhome != NULL)
{
- sprintf (szFileName, %s/%s/%s, usrhome, .pyinput, usrphrase.tab);
+ snprintf (szFileName, sizeof(szFileName)-1, %s/%s/%s, usrhome,
.pyinput, usrphrase.tab);
SaveUsrPhrase (szFileName);
}
else
diff -u unicon-3.0.4/debian/changelog unicon-3.0.4/debian/changelog
--- unicon-3.0.4/debian/changelog
+++ unicon-3.0.4/debian/changelog
@@ -1,3 +1,11 @@
+unicon (3.0.4-11etch1) stable-security; urgency=high
+
+ * Non-maintainer upload by The Security Team.
+ * Fix the unsafe use of environmental variables.
+[CVE-2007-2835]
+
+ -- Steve Kemp [EMAIL PROTECTED] Sun, 24 Jul 2007 15:02:42 +
+
unicon (3.0.4-11) unstable; urgency=low
* Changed TLS_PthSocket ::read ::write to Read, Write.
Steve
--
http://www.steve.org.uk/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431332: CVE-2007-2837: Arbitary file removal
Hi, I agree that this code could become a problem, although I wasn't able to reproduce using screen and the command written in your mail. Anyways - what really might happen is that the file is overwritten, not deleted, as rm should delete the link not the file the link points to. Nevertheless, this doesnt make a big difference, so I will add your fix to the official version of fireflier. thanks, Martin Maurer (main developer, and original author of that code) signature.asc Description: This is a digitally signed message part
Bug#425196: marked as done (visualboyadvance_1.8.0-1: FTBFS on 64-bit architectures)
Your message dated Sun, 01 Jul 2007 20:02:52 + with message-id [EMAIL PROTECTED] and subject line Bug#425196: fixed in visualboyadvance 1.8.0-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: visualboyadvance Version: 1.8.0-1 Severity: serious Hi José Carlos, visualboyadvance 1.8.0-1 has a regression versus 1.7.2-6, resulting in a build failure on 64-bit archs: [...] make[3]: Entering directory `/build/buildd/visualboyadvance-1.8.0/src/prof' alpha-linux-gnu-g++ -DPACKAGE_NAME=\\ -DPACKAGE_TARNAME=\\ -DPACKAGE_VERSION=\\ -DPACKAGE_STRING=\\ -DPACKAGE_BUGREPORT=\\ -DPACKAGE=\VisualBoyAdvance\ -DVERSION=\1.8.0\ -DHAVE_LIBZ=1 -DHAVE_LIBPTHREAD=1 -DSTDC_HEADERS=1 -DHAVE_SYS_TYPES_H=1 -DHAVE_SYS_STAT_H=1 -DHAVE_STDLIB_H=1 -DHAVE_STRING_H=1 -DHAVE_MEMORY_H=1 -DHAVE_STRINGS_H=1 -DHAVE_INTTYPES_H=1 -DHAVE_STDINT_H=1 -DHAVE_UNISTD_H=1 -DHAVE_MALLOC_H=1 -DHAVE_STRINGS_H=1 -DHAVE_UNISTD_H=1 -DHAVE_ARPA_INET_H=1 -DHAVE_NETINET_IN_H=1 -DENABLE_NLS=1 -DHAVE_GETTEXT=1 -DHAVE_DCGETTEXT=1 -DHAVE_LIBINTL_H=1 -I. -I/usr/include/libpng12-Wall -g -W -O0 -Wl,-z,defs -DBKPT_SUPPORT -DBKPT_SUPPORT -DC_CORE -DPROFILING -DDEV_VERSION -MT prof.o -MD -MP -MF .deps/prof.Tpo -c -o prof.o prof.cpp prof.cpp: In function 'void profCleanup()': prof.cpp:274: error: cast from 'char*' to 'u32' loses precision make[3]: *** [prof.o] Error 1 [...] A full build log can be found at http://buildd.debian.org/fetch.cgi?pkg=visualboyadvancearch=alphaver=1.8.0-1stamp=1179615775. Of course a u32 is not large enough to store a pointer on a 64-bit platform. Previous versions of visualboyadvance don't appear to have had this bug. Thanks, -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/ ---End Message--- ---BeginMessage--- Source: visualboyadvance Source-Version: 1.8.0-2 We believe that the bug you reported is fixed in the latest version of visualboyadvance, which is due to be installed in the Debian FTP archive: visualboyadvance-gtk_1.8.0-2_i386.deb to pool/main/v/visualboyadvance/visualboyadvance-gtk_1.8.0-2_i386.deb visualboyadvance_1.8.0-2.diff.gz to pool/main/v/visualboyadvance/visualboyadvance_1.8.0-2.diff.gz visualboyadvance_1.8.0-2.dsc to pool/main/v/visualboyadvance/visualboyadvance_1.8.0-2.dsc visualboyadvance_1.8.0-2_i386.deb to pool/main/v/visualboyadvance/visualboyadvance_1.8.0-2_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Jose Carlos Medeiros [EMAIL PROTECTED] (supplier of updated visualboyadvance package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Tue, 29 May 2007 15:45:31 -0300 Source: visualboyadvance Binary: visualboyadvance visualboyadvance-gtk Architecture: source i386 Version: 1.8.0-2 Distribution: unstable Urgency: low Maintainer: Jose Carlos Medeiros [EMAIL PROTECTED] Changed-By: Jose Carlos Medeiros [EMAIL PROTECTED] Description: visualboyadvance - a full featured Game Boy Advance emulator visualboyadvance-gtk - a GTK front-end to VisualBoyAdvance emulator Closes: 371239 384804 403029 404837 425196 Changes: visualboyadvance (1.8.0-2) unstable; urgency=low . * Updated and re-added 02_amd64_build_fix dpatch. (Closes: #425196) * Solved FTBFS on kfreebsd-i386, added build-dep on nasm. (Closes: #403029) * With 1.8.0 version, a buffer overflow bug was solved. (Closes: #384804) * Separated GTK version in another package. (Closes: #371239) - Created a gvba.1 man file. - Changed .menu file to this new package. * Added help2man, to always generate a updated vba man file. (Closes: #404837) Files: 78b9a7321438ba8894daccbd8faf6c8b 906 games extra visualboyadvance_1.8.0-2.dsc 716a4d9ed7d8d02eb53a4f46941418df 117840 games extra visualboyadvance_1.8.0-2.diff.gz fbec7595050295a5d54a5e5675c9a9bd 309676 games extra visualboyadvance_1.8.0-2_i386.deb e3b23b13251acb47030187d104ffaa7d 367332 games extra visualboyadvance-gtk_1.8.0-2_i386.deb
Bug#431332: CVE-2007-2837: Arbitary file removal
On Sun Jul 01, 2007 at 21:56:43 +0200, Martin MAURER wrote: I agree that this code could become a problem, although I wasn't able to reproduce using screen and the command written in your mail. I could reproduce this using the -qt version of the client. First of all adding some rules, then bringing up the rule list and removing one of them. Anyways - what really might happen is that the file is overwritten, not deleted, as rm should delete the link not the file the link points to. That is generally true. I'm trying to remember whether it was unlinked and I'm 99% certain it was, rather than truncated/trashed. Nevertheless, this doesnt make a big difference, so I will add your fix to the official version of fireflier. Thanks a lot. Steve -- # Commercial Debian GNU/Linux Support http://www.linux-administration.org/ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431145: BTS abuse (was: #431145 FTBFS: debian-installer fails to build on powerpc in sid)
Christian Perrier wrote: Quoting Sven Luther ([EMAIL PROTECTED]): reopen 431145 thanks It is better practice to close the bug once it is actually fixed, and not saying it will be fixed soon :) Please don't play asshole with me, Sven. And you're wrong too. It is common practice to close bugs when the fix has been uploaded, which is exactly what Christian did. Is this going to be your next game? CC'ing the BTS admins as this is a second example of BTS abuse in the last few weeks. And there was at least one other recent example of BTS pingpong from you on #426262. And no, a smiley does not make this a joke or reduce the seriousness of your abuse. You're only annoying maintainers and wasting people's time. You're also shooting yourself in the foot because behavior like this is hardly likely to want maintainers to work on your issues. pgpdBhJ9m8Bsp.pgp Description: PGP signature
Bug#424667: marked as done (smc: It's FTBFS due to an incompatible libboost-filesystem-dev change)
Your message dated Sun, 01 Jul 2007 20:32:14 + with message-id [EMAIL PROTECTED] and subject line Bug#424667: fixed in smc 0.99.6-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: smc Version: 0.99.6-1 Severity: serious Justification: no longer builds from source Location of libboost-filesystem-dev headers changed from /usr/include/boost to /usr/include/boost/filesystem. Configuration scripts must be adjusted. -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (950, 'unstable'), (500, 'testing') Architecture: i386 (i686) Kernel: Linux 2.6.18-mrb319 (SMP w/4 CPU cores) Locale: LANG=en_US, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages smc depends on: pn libboost-filesystem1.33 none (no description available) ii libc6 2.5-7GNU C Library: Shared libraries ii libcegui-mk2-0c2a 0.5.0-1 Crazy Eddie's GUI (libraries) ii libgcc1 1:4.2-20070405-1 GCC support library ii libgl1-mesa-glx [libgl1 6.5.2-4 A free implementation of the OpenG ii libglu1-mesa [libglu1] 6.5.2-4 The OpenGL utility library (GLU) ii libsdl-image1.2 1.2.5-3 image loading library for Simple D ii libsdl-mixer1.2 1.2.6-2 mixer library for Simple DirectMed ii libsdl-ttf2.0-0 2.0.8-3+b1 ttf library for Simple DirectMedia ii libsdl1.2debian 1.2.11-8 Simple DirectMedia Layer ii libstdc++6 4.2-20070405-1 The GNU Standard C++ Library v3 pn smc-datanone (no description available) smc recommends no packages. ---End Message--- ---BeginMessage--- Source: smc Source-Version: 0.99.6-2 We believe that the bug you reported is fixed in the latest version of smc, which is due to be installed in the Debian FTP archive: smc-data_0.99.6-2_all.deb to pool/main/s/smc/smc-data_0.99.6-2_all.deb smc_0.99.6-2.diff.gz to pool/main/s/smc/smc_0.99.6-2.diff.gz smc_0.99.6-2.dsc to pool/main/s/smc/smc_0.99.6-2.dsc smc_0.99.6-2_powerpc.deb to pool/main/s/smc/smc_0.99.6-2_powerpc.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Muammar El Khatib [EMAIL PROTECTED] (supplier of updated smc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 17 Jun 2007 22:08:22 +0100 Source: smc Binary: smc-data smc Architecture: source powerpc all Version: 0.99.6-2 Distribution: unstable Urgency: low Maintainer: Muammar El Khatib [EMAIL PROTECTED] Changed-By: Muammar El Khatib [EMAIL PROTECTED] Description: smc- a Jump and Run game like Super Mario World written in C++ smc-data - levels and music for smc Closes: 423498 424667 Changes: smc (0.99.6-2) unstable; urgency=low . * Acknowledge NMUs (Closes: #424667) * Problems loading *.so files have been fixed in this revision of smc (Closes: #423498) Files: 55d5262029018bfef64285aed9db0402 728 games optional smc_0.99.6-2.dsc 63f70ccbba40bdd40f6ba22818f72fb9 6576 games optional smc_0.99.6-2.diff.gz bc6f572728768116d999149b1e37cd91 39223966 games optional smc-data_0.99.6-2_all.deb 478d4f456533993367153c7e0393b52e 564104 games optional smc_0.99.6-2_powerpc.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGh0qRmBxf18ZxJX0RAkOXAJ9T2Z8WjKtSdks0HM0qQMHAuwO1bgCggoY+ sM4oL9zaMw3BM31npL3lZ4g= =u/K3 -END PGP SIGNATURE- ---End Message---
Bug#431331: marked as done (CVE-2007-2838: Allow arbitary files to be created/truncated)
Your message dated Sun, 01 Jul 2007 20:32:04 +
with message-id [EMAIL PROTECTED]
and subject line Bug#431331: fixed in gsambad 0.1.6-2
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
---BeginMessage---
Package: gsambad
Version: 0.1.5-5
Severity: grave
Usertags: sourcescan
*** Please type your report below this line ***
Security issue: CVE-2007-2838
The gsambad package contains a binary (which may only be
executed by the root user) with the following code in it:
if((fp=popen(touch /tmp/gsambadtmp chmod 600 /tmp/gsambadtmp
smbstatus 21 /tmp/gsambadtmp, w))==NULL)
{
/* Dont show a popup */
return;
}
This can be used to create/trash arbitary files upon the system with
a symlink attack.
Steve
--
---End Message---
---BeginMessage---
Source: gsambad
Source-Version: 0.1.6-2
We believe that the bug you reported is fixed in the latest version of
gsambad, which is due to be installed in the Debian FTP archive:
gsambad_0.1.6-2.diff.gz
to pool/main/g/gsambad/gsambad_0.1.6-2.diff.gz
gsambad_0.1.6-2.dsc
to pool/main/g/gsambad/gsambad_0.1.6-2.dsc
gsambad_0.1.6-2_i386.deb
to pool/main/g/gsambad/gsambad_0.1.6-2_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Daniel Baumann [EMAIL PROTECTED] (supplier of updated gsambad package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.7
Date: Sun, 1 Jul 2007 21:37:00 +0200
Source: gsambad
Binary: gsambad
Architecture: source i386
Version: 0.1.6-2
Distribution: unstable
Urgency: high
Maintainer: Daniel Baumann [EMAIL PROTECTED]
Changed-By: Daniel Baumann [EMAIL PROTECTED]
Description:
gsambad- GTK+ configuration tool for samba
Closes: 431331
Changes:
gsambad (0.1.6-2) unstable; urgency=high
.
[ Steve Kemp ]
* Avoid unsafe usage of temporary files [CVE-2007-2838] (Closes: #431331).
Files:
932ce13f5c86a8aac65d624d4faa40a5 597 admin optional gsambad_0.1.6-2.dsc
df81b97f6930c69f40ca62854be3c2dc 25245 admin optional gsambad_0.1.6-2.diff.gz
b1e0bc6f54a3b52e4749f52e761f3d53 97394 admin optional gsambad_0.1.6-2_i386.deb
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGiATj+C5cwEsrK54RAlSFAKCm1glf1FLjehe0di56a2xM5U12DACdGMzz
Dskywp5CJAu/9AW8Lpb/RS8=
=jf+N
-END PGP SIGNATURE-
---End Message---
Bug#423498: marked as done (Fails to load libCEGUIDevILImageCodec.so)
Your message dated Sun, 01 Jul 2007 20:32:14 + with message-id [EMAIL PROTECTED] and subject line Bug#423498: fixed in smc 0.99.6-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: smc Version: 0.99.6-1 Severity: important Hi, When trying to start smc: CEGUI::Exception: DynamicModule::DynamicModule - Failed to load module 'libCEGUIDevILImageCodec.so': libCEGUIDevILImageCodec.so: cannot open shared object file: No such file or directory CEGUI Exception occurred : DynamicModule::DynamicModule - Failed to load module 'libCEGUIDevILImageCodec.so': libCEGUIDevILImageCodec.so: cannot open shared object file: No such file or directory I'm not sure why it tries to dynamically load those instead of relying on the linker, but anyway it should use the versioned of the so file instead of the .so directly (/usr/lib/libCEGUIDevILImageCodec.so.0 in this case) Sjoerd -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (500, 'testing'), (101, 'experimental') Architecture: powerpc (ppc) Kernel: Linux 2.6.20-1-powerpc Locale: LANG=C, LC_CTYPE=nl_NL (charmap=ISO-8859-1) Shell: /bin/sh linked to /bin/dash Versions of packages smc depends on: ii libboost-filesystem1.33.1 1.33.1-10 filesystem operations (portable pa ii libc6 2.5-7 GNU C Library: Shared libraries ii libcegui-mk2-0c2a 0.5.0-1Crazy Eddie's GUI (libraries) ii libgcc1 1:4.1.2-6 GCC support library ii libgl1-mesa-glx [libgl1] 6.5.2-4A free implementation of the OpenG ii libglu1-mesa [libglu1]6.5.2-4The OpenGL utility library (GLU) ii libsdl-image1.2 1.2.5-3image loading library for Simple D ii libsdl-mixer1.2 1.2.6-2mixer library for Simple DirectMed ii libsdl-ttf2.0-0 2.0.8-3+b1 ttf library for Simple DirectMedia ii libsdl1.2debian 1.2.11-8 Simple DirectMedia Layer ii libstdc++64.1.2-6The GNU Standard C++ Library v3 ii smc-data 0.99.6-1 levels and music for smc smc recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Source: smc Source-Version: 0.99.6-2 We believe that the bug you reported is fixed in the latest version of smc, which is due to be installed in the Debian FTP archive: smc-data_0.99.6-2_all.deb to pool/main/s/smc/smc-data_0.99.6-2_all.deb smc_0.99.6-2.diff.gz to pool/main/s/smc/smc_0.99.6-2.diff.gz smc_0.99.6-2.dsc to pool/main/s/smc/smc_0.99.6-2.dsc smc_0.99.6-2_powerpc.deb to pool/main/s/smc/smc_0.99.6-2_powerpc.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Muammar El Khatib [EMAIL PROTECTED] (supplier of updated smc package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 17 Jun 2007 22:08:22 +0100 Source: smc Binary: smc-data smc Architecture: source powerpc all Version: 0.99.6-2 Distribution: unstable Urgency: low Maintainer: Muammar El Khatib [EMAIL PROTECTED] Changed-By: Muammar El Khatib [EMAIL PROTECTED] Description: smc- a Jump and Run game like Super Mario World written in C++ smc-data - levels and music for smc Closes: 423498 424667 Changes: smc (0.99.6-2) unstable; urgency=low . * Acknowledge NMUs (Closes: #424667) * Problems loading *.so files have been fixed in this revision of smc (Closes: #423498) Files: 55d5262029018bfef64285aed9db0402 728 games optional smc_0.99.6-2.dsc 63f70ccbba40bdd40f6ba22818f72fb9 6576 games optional smc_0.99.6-2.diff.gz bc6f572728768116d999149b1e37cd91 39223966 games optional smc-data_0.99.6-2_all.deb 478d4f456533993367153c7e0393b52e 564104 games optional smc_0.99.6-2_powerpc.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGh0qRmBxf18ZxJX0RAkOXAJ9T2Z8WjKtSdks0HM0qQMHAuwO1bgCggoY+ sM4oL9zaMw3BM31npL3lZ4g= =u/K3 -END PGP SIGNATURE- ---End Message---
Processed: Remove meaningless version
Processing commands for [EMAIL PROTECTED]: notfound 431145 2007.06.30 Bug#431145: FTBFS: debian-installer fails to build on powerpc in sid Bug marked as not found in version 2007.06.30. (By the way, this Bug is currently marked as done.) End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88
On Sun, Jul 01, 2007 at 07:22:29PM +0200, Joerg Platte wrote: This could be caused by #427643, because all the necessary files to get the UUID (and LABEL in my case) links are not copied into the initramfs. regards, Jörg yes it is, path_id is missing in his initramfs. best regards -- maks
Bug#421366: workrave: Worse than thought
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, This bug is fixed upstream. See http://issues.workrave.org/cgi-bin/bugzilla/show_bug.cgi?id=609 It's easy to fix: http://workrave.svn.sourceforge.net/viewvc/workrave/workrave/trunk/frontend/gtkmm/src/GUI.cc?r1=1144r2=1161view=patch Groetjes, Rob (upstream author) PS: yes, I know. 1.8.5 is way overdue... -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGiBQeL7gzNDMA8w8RAlPVAKC8T0Z4ctUcXzmqGMn6Mu3smy6UkACfbBTW 77KjxmDSLZ+ttVoKdLpWohM= =oZts -END PGP SIGNATURE- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 431331
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 tags 431331 security Bug#431331: CVE-2007-2838: Allow arbitary files to be created/truncated There were no tags set. Tags added: security End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#430768: marked as done (broken xine-lib, no demuxer found)
Your message dated Sun, 01 Jul 2007 21:02:03 +
with message-id [EMAIL PROTECTED]
and subject line Bug#430768: fixed in gxine 0.5.11-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
---BeginMessage---
Package: gxine
Version: 0.5.11-2
Severity: grave
I installed gxine, started it without any argument, accepted the
Wizard's defaults, then was presented with this message:
xine-lib: error: Whoops. You seem to have a broken xine-lib.: No
demuxer found - stream format not recognised.
the screen says /usr/share/gxine/logo.mpv.
-- System Information:
Debian Release: lenny/sid
APT prefers unstable
APT policy: (500, 'unstable'), (500, 'testing'), (500, 'stable'), (1,
'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.21-1-amd64 (SMP w/1 CPU core)
Locale: LANG=en_GB, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages gxine depends on:
ii libc6 2.5-11 GNU C Library: Shared libraries
ii libdbus-glib-1-2 0.73-2 simple interprocess messaging syst
ii libglib2.0-0 2.12.12-1 The GLib library of C routines
ii libgtk2.0-0 2.10.13-1 The GTK+ graphical user interface
ii liblircclient00.8.0-9.3 LIRC client library
ii libmozjs0d1.8.1.4-2 The Mozilla SpiderMonkey JavaScrip
ii libpango1.0-0 1.16.4-1 Layout and rendering of internatio
ii librsvg2-common 2.16.1-2 SAX-based renderer library for SVG
ii libx11-6 2:1.0.3-7 X11 client-side library
ii libxext6 1:1.0.3-2 X11 miscellaneous extension librar
ii libxine1 1.1.7-1the xine video/media player librar
ii libxinerama1 1:1.0.2-1 X11 Xinerama extension library
gxine recommends no packages.
-- no debconf information
--
.''`. martin f. krafft [EMAIL PROTECTED]
: :' : proud Debian developer, author, administrator, and user
`. `'` http://people.debian.org/~madduck - http://debiansystem.info
`- Debian - when you have better things to do than fixing systems
signature.asc
Description: Digital signature (GPG/PGP)
---End Message---
---BeginMessage---
Source: gxine
Source-Version: 0.5.11-3
We believe that the bug you reported is fixed in the latest version of
gxine, which is due to be installed in the Debian FTP archive:
gxine_0.5.11-3.diff.gz
to pool/main/g/gxine/gxine_0.5.11-3.diff.gz
gxine_0.5.11-3.dsc
to pool/main/g/gxine/gxine_0.5.11-3.dsc
gxine_0.5.11-3_i386.deb
to pool/main/g/gxine/gxine_0.5.11-3_i386.deb
gxineplugin_0.5.11-3_i386.deb
to pool/main/g/gxine/gxineplugin_0.5.11-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Darren Salt [EMAIL PROTECTED] (supplier of updated gxine package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Format: 1.7
Date: Sun, 01 Jul 2007 20:08:31 +0100
Source: gxine
Binary: gxineplugin gxine
Architecture: source i386
Version: 0.5.11-3
Distribution: unstable
Urgency: low
Maintainer: Darren Salt [EMAIL PROTECTED]
Changed-By: Darren Salt [EMAIL PROTECTED]
Description:
gxine - the xine video player, GTK+/Gnome user interface
gxineplugin - the xine video player, GTK+/Gnome; launcher plugin for Mozilla
Closes: 430768
Changes:
gxine (0.5.11-3) unstable; urgency=low
.
[ Darren Salt ]
* Fixed the audio visualisation default (was somewhat random).
* Use the JPEG version of the logo; the MPEG version requires
libxine1-ffmpeg to be installed to avoid the warning. (Closes: #430768)
* Recommend libxine1-ffmpeg.
* Remove the version restriction on the realplayer suggestion since we
have a new-enough xine-lib.
* Fixed two install failures which occur with DEB_BUILD_OPTIONS=nostrip.
* Compatibility fix for glib 2.13 and later.
.
[ Reinhard Tartler ]
* don't update config.{sub,guess} in clean target anymore, use a
dedicated make target for that.
* update config.{sub,guess} by hand.
* Don't use '-$(MAKE) distclean' in debian/rules to not ignore other
error
Bug#425927: marked as done (sfftobmp: FTBFS with new boost libraries)
Your message dated Sun, 01 Jul 2007 21:02:05 + with message-id [EMAIL PROTECTED] and subject line Bug#425927: fixed in sfftobmp 3.0-7 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: sfftobmp Version: 3.0-6 Severity: serious Tags: sid From my pbuilder build log: ... g++ -g -O2 -o sfftobmp my_getopt.o cmdline.o codes.o common.o decoder.o input.o main.o output.o -ltiff -ljpeg -lboost_filesystem /usr/bin/ld: cannot find -lboost_filesystem collect2: ld returned 1 exit status make[3]: *** [sfftobmp] Error 1 make[3]: Leaving directory `/tmp/buildd/sfftobmp-3.0/src' make[2]: *** [all] Error 2 make[2]: Leaving directory `/tmp/buildd/sfftobmp-3.0/src' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/tmp/buildd/sfftobmp-3.0' make: *** [build-stamp] Error 2 -- Daniel Schepler ---End Message--- ---BeginMessage--- Source: sfftobmp Source-Version: 3.0-7 We believe that the bug you reported is fixed in the latest version of sfftobmp, which is due to be installed in the Debian FTP archive: sfftobmp_3.0-7.diff.gz to pool/main/s/sfftobmp/sfftobmp_3.0-7.diff.gz sfftobmp_3.0-7.dsc to pool/main/s/sfftobmp/sfftobmp_3.0-7.dsc sfftobmp_3.0-7_i386.deb to pool/main/s/sfftobmp/sfftobmp_3.0-7_i386.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Matthias Klose [EMAIL PROTECTED] (supplier of updated sfftobmp package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 22:48:07 +0200 Source: sfftobmp Binary: sfftobmp Architecture: source i386 Version: 3.0-7 Distribution: unstable Urgency: low Maintainer: Matthias Klose [EMAIL PROTECTED] Changed-By: Matthias Klose [EMAIL PROTECTED] Description: sfftobmp - SFF (Structed Fax File) Converter Closes: 425927 Changes: sfftobmp (3.0-7) unstable; urgency=low . * Link using the single threaded boost libraries. Closes: #425927. Files: 3020dac7b958321ab4c9129430549b71 625 graphics optional sfftobmp_3.0-7.dsc 8ae196bd6327056ed0634719eb6d0c72 103860 graphics optional sfftobmp_3.0-7.diff.gz 955c3c34c7dab90755e40f40db9f365f 38784 graphics optional sfftobmp_3.0-7_i386.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGiBNpStlRaw+TLJwRAkMjAJ0WxOgA8sG0HjRDe8ScgxT47+EdIwCfWlZP 06P4oITsiU6IlSp8DF5avOI= =Bpro -END PGP SIGNATURE- ---End Message---
Processed: tagging 431336
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 tags 431336 patch Bug#431336: CVE-2007-2835 : Buffer overflow. Tags were: security Tags added: patch End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 431332, tagging 431336
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 tags 431332 security Bug#431332: CVE-2007-2837: Arbitary file removal There were no tags set. Tags added: security tags 431336 security Bug#431336: CVE-2007-2835 : Buffer overflow. There were no tags set. Tags added: security End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#418314: marked as done (php4: Should not be included in Lenny)
Your message dated Sun, 01 Jul 2007 21:32:03 + with message-id [EMAIL PROTECTED] and subject line Bug#418314: fixed in php-auth-pam 0.4-10 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: php4 Severity: serious PHP 4 should not be included in Lenny, which would require to support it at least until 2011. Cheers, Moritz -- System Information: Debian Release: 4.0 APT prefers unstable APT policy: (500, 'unstable') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-686 Locale: LANG=C, [EMAIL PROTECTED] (charmap=ISO-8859-15) ---End Message--- ---BeginMessage--- Source: php-auth-pam Source-Version: 0.4-10 We believe that the bug you reported is fixed in the latest version of php-auth-pam, which is due to be installed in the Debian FTP archive: php-auth-pam_0.4-10.diff.gz to pool/main/p/php-auth-pam/php-auth-pam_0.4-10.diff.gz php-auth-pam_0.4-10.dsc to pool/main/p/php-auth-pam/php-auth-pam_0.4-10.dsc php5-auth-pam_0.4-10_amd64.deb to pool/main/p/php-auth-pam/php5-auth-pam_0.4-10_amd64.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Carsten Wolff [EMAIL PROTECTED] (supplier of updated php-auth-pam package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Fri, 29 Jun 2007 19:26:17 +0200 Source: php-auth-pam Binary: php5-auth-pam Architecture: source amd64 Version: 0.4-10 Distribution: unstable Urgency: low Maintainer: Carsten Wolff [EMAIL PROTECTED] Changed-By: Carsten Wolff [EMAIL PROTECTED] Description: php5-auth-pam - A PHP5 extension for PAM authentication Closes: 411162 418314 420937 Changes: php-auth-pam (0.4-10) unstable; urgency=low . * removed support for php4 (closes: Bug#418314) * instead of manipulating php.ini, create a file in conf.d. This obsoletes our debconf templates and translations. Removed them all. (closes: Bug#411162) (closes: Bug#420937) Files: c95d879f1fcd2f81d40b243a58bd9ceb 629 web optional php-auth-pam_0.4-10.dsc 82c53940545a67922a4e67a6e7a3f32e 4516 web optional php-auth-pam_0.4-10.diff.gz 29fb2c361358ff920e1d1dffacb7d99a 11234 web optional php5-auth-pam_0.4-10_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGiBoF9/DnDzB9Vu0RAu68AJ9LVaZHyT8rXZfDkTeaayKCUiO0vwCeIvcA pRstqW0Pi1ckeId2oIxo1Bs= =omAk -END PGP SIGNATURE- ---End Message---
Bug#429196: marked as done ([CVE-2007-3215] remote shell command injection in PHPMailer)
Your message dated Sun, 01 Jul 2007 21:47:05 + with message-id [EMAIL PROTECTED] and subject line Bug#429196: fixed in knowledgeroot 0.9.8.2-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: knowledgeroot Severity: grave Tags: security A security bug has been discovered in PHPMailer: | PHPMailer 1.7, when configured to use sendmail, allows remote | attackers to execute arbitrary shell commands via shell metacharacters | in the SendmailSend function in class.phpmailer.php http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3215 https://sourceforge.net/tracker/index.php?func=detailaid=1734811group_id=26031atid=385707 Your package contains a copy of PHPMailer. Please mention the name CVE-2007-3215 in the changelog when fixing this bug. A security update for stable may be necessary. PS: Please remove your copy of PHPMailer and use the package libphp-phpmailer instead. ---End Message--- ---BeginMessage--- Source: knowledgeroot Source-Version: 0.9.8.2-2 We believe that the bug you reported is fixed in the latest version of knowledgeroot, which is due to be installed in the Debian FTP archive: knowledgeroot_0.9.8.2-2.diff.gz to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2.diff.gz knowledgeroot_0.9.8.2-2.dsc to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2.dsc knowledgeroot_0.9.8.2-2_all.deb to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Frank Habermann [EMAIL PROTECTED] (supplier of updated knowledgeroot package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 23:27:23 +0200 Source: knowledgeroot Binary: knowledgeroot Architecture: source all Version: 0.9.8.2-2 Distribution: unstable Urgency: high Maintainer: Frank Habermann [EMAIL PROTECTED] Changed-By: Frank Habermann [EMAIL PROTECTED] Description: knowledgeroot - web-based knowledgebase system Closes: 429196 429204 Changes: knowledgeroot (0.9.8.2-2) unstable; urgency=high . * Applied patch from phpmailer upstream to fix shell command execution in the included phpmailer code [CVE-2007-3215] (Closes: #429196). * Applied patch from svn repository for fckeditor to fix incomplete blacklist vulnerability in the filemanager [CVE-2007-3163] (Closes: #429204). Files: efecf03c6d66a5debba33cafe9c830b7 595 web optional knowledgeroot_0.9.8.2-2.dsc 4bc915d428b0aa70ac699f50e1ab7053 6041 web optional knowledgeroot_0.9.8.2-2.diff.gz dbad8c6880d8003295ad8db6f9910b0f 1303752 web optional knowledgeroot_0.9.8.2-2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGiB6r+C5cwEsrK54RAukRAJ98bsxVHmDDPuONroRKQtHT/7HN8QCfRLub smbPsJpVl3wuJF3Q8cxWaEw= =xW1q -END PGP SIGNATURE- ---End Message---
Bug#429204: marked as done ([CVE-2007-3163, CVE-2006-6978 etc.] FCKEditor issues)
Your message dated Sun, 01 Jul 2007 21:47:05 + with message-id [EMAIL PROTECTED] and subject line Bug#429204: fixed in knowledgeroot 0.9.8.2-2 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: knowledgeroot Severity: grave Tags: security Your package seems to contain a copy of FCKEditor, which has been affected by several security issues: http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=FCKEditor Please make sure that these vulnerabilities have been fixed in your copy, both in stable and unstable. Thanks! (It would be great if you could contribute to a shared FCKEditor package, so there's just one place which needs patching.) ---End Message--- ---BeginMessage--- Source: knowledgeroot Source-Version: 0.9.8.2-2 We believe that the bug you reported is fixed in the latest version of knowledgeroot, which is due to be installed in the Debian FTP archive: knowledgeroot_0.9.8.2-2.diff.gz to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2.diff.gz knowledgeroot_0.9.8.2-2.dsc to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2.dsc knowledgeroot_0.9.8.2-2_all.deb to pool/main/k/knowledgeroot/knowledgeroot_0.9.8.2-2_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Frank Habermann [EMAIL PROTECTED] (supplier of updated knowledgeroot package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 01 Jul 2007 23:27:23 +0200 Source: knowledgeroot Binary: knowledgeroot Architecture: source all Version: 0.9.8.2-2 Distribution: unstable Urgency: high Maintainer: Frank Habermann [EMAIL PROTECTED] Changed-By: Frank Habermann [EMAIL PROTECTED] Description: knowledgeroot - web-based knowledgebase system Closes: 429196 429204 Changes: knowledgeroot (0.9.8.2-2) unstable; urgency=high . * Applied patch from phpmailer upstream to fix shell command execution in the included phpmailer code [CVE-2007-3215] (Closes: #429196). * Applied patch from svn repository for fckeditor to fix incomplete blacklist vulnerability in the filemanager [CVE-2007-3163] (Closes: #429204). Files: efecf03c6d66a5debba33cafe9c830b7 595 web optional knowledgeroot_0.9.8.2-2.dsc 4bc915d428b0aa70ac699f50e1ab7053 6041 web optional knowledgeroot_0.9.8.2-2.diff.gz dbad8c6880d8003295ad8db6f9910b0f 1303752 web optional knowledgeroot_0.9.8.2-2_all.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGiB6r+C5cwEsrK54RAukRAJ98bsxVHmDDPuONroRKQtHT/7HN8QCfRLub smbPsJpVl3wuJF3Q8cxWaEw= =xW1q -END PGP SIGNATURE- ---End Message---
Processed: tagging 431106
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 tags 431106 sid Bug#431106: enigmail-locale-de: Will be removed when upgrading enigmail package There were no tags set. Tags added: sid End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431145: BTS abuse (was: #431145 FTBFS: debian-installer fails to build on powerpc in sid)]
(Keeping CC list as set by Sven and adding back [EMAIL PROTECTED]) In reply to: http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=31;bug=431145 Sven Luther ([EMAIL PROTECTED]) wrote: At the time of the bug closure, the upload was not yet made, and to this day, d-i is still unbuildable on powerpc, ... Upload of package accepted [1]: Sat, 30 Jun 2007 07:02:01 + Closure of the bug [2]: Sat, 30 Jun 2007 08:44:16 +0200 Actions were coordinated on #d-boot. IMO the times are close enough (18 min. difference) to justify my statement that the bug was closed together with the upload of the package fixing the problem, as was indicated by Christian in his reply closing the report. Reason the build errors still occur for powerpc is that the upload was done for amd64 and the powerpc buildd took more than a day to pick it up. For powerpc, the package should get hit the mirrors with the mirror pulse running $NOW. As someone who has been intimately involved with Debian for so long, one would expect mr. Luther to know how these things work... [random completely unrelated other complaints snipped] Cheers, FJP [1]http://packages.qa.debian.org/libd/libdebian-installer/news/20070630T070201Z.html [2]http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;bug=431145 pgpPHYZmCmPaF.pgp Description: PGP signature
Processed: tagging 426923
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 tags 426923 sid lenny Bug#426923: gmailfs: Broken package : depends on unavailable python-fuse 2.2-2 There were no tags set. Tags added: sid, lenny End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: found 431300 in 1.01-5
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 found 431300 1.01-5 Bug#431300: ocsinventory-agent: Uninstallable on [!i386 !amd64 !ia64] due to unmet dep on dmidecode Bug marked as found in version 1.01-5. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#417045: marked as done (python-sqlrelay: Ships files in /usr/lib64)
Your message dated Sun, 01 Jul 2007 22:32:03 + with message-id [EMAIL PROTECTED] and subject line Bug#417045: fixed in sqlrelay 1:0.38-3 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: python-sqlrelay Version: 1:0.38-2 Severity: serious Hi, Your package is currently shipping files in /usr/lib64/python2.4 on amd64 instead of /usr/lib/python2.4. This will break systems in case dpkg tries to remove the /usr/lib64/python2.4 and /usr/lib64 directories. The problem is that /usr/lib64 is not a directory, but a symlink, and dpkg will remove the symlink and break the system. The version in testing properly has it's files in /usr/lib/python2.4. Kurt ---End Message--- ---BeginMessage--- Source: sqlrelay Source-Version: 1:0.38-3 We believe that the bug you reported is fixed in the latest version of sqlrelay, which is due to be installed in the Debian FTP archive: libdbd-sqlrelay-perl_0.38-3_all.deb to pool/main/s/sqlrelay/libdbd-sqlrelay-perl_0.38-3_all.deb libfirstworks-sqlr-perl_0.38-3_amd64.deb to pool/main/s/sqlrelay/libfirstworks-sqlr-perl_0.38-3_amd64.deb libsqlrelay-0.38_0.38-3_amd64.deb to pool/main/s/sqlrelay/libsqlrelay-0.38_0.38-3_amd64.deb libsqlrelay-java_0.38-3_amd64.deb to pool/main/s/sqlrelay/libsqlrelay-java_0.38-3_amd64.deb libsqlrelay-ruby_0.38-3_amd64.deb to pool/main/s/sqlrelay/libsqlrelay-ruby_0.38-3_amd64.deb libsqlrelay-tcl_0.38-3_amd64.deb to pool/main/s/sqlrelay/libsqlrelay-tcl_0.38-3_amd64.deb php5-sqlrelay_0.38-3_amd64.deb to pool/main/s/sqlrelay/php5-sqlrelay_0.38-3_amd64.deb python-sqlrelay_0.38-3_amd64.deb to pool/main/s/sqlrelay/python-sqlrelay_0.38-3_amd64.deb sqlrelay-config-gtk_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-config-gtk_0.38-3_amd64.deb sqlrelay-dev_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-dev_0.38-3_amd64.deb sqlrelay-doc_0.38-3_all.deb to pool/main/s/sqlrelay/sqlrelay-doc_0.38-3_all.deb sqlrelay-freetds_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-freetds_0.38-3_amd64.deb sqlrelay-mdb_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-mdb_0.38-3_amd64.deb sqlrelay-mysql_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-mysql_0.38-3_amd64.deb sqlrelay-odbc_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-odbc_0.38-3_amd64.deb sqlrelay-postgresql_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-postgresql_0.38-3_amd64.deb sqlrelay-sqlite_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-sqlite_0.38-3_amd64.deb sqlrelay-test_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay-test_0.38-3_amd64.deb sqlrelay_0.38-3.diff.gz to pool/main/s/sqlrelay/sqlrelay_0.38-3.diff.gz sqlrelay_0.38-3.dsc to pool/main/s/sqlrelay/sqlrelay_0.38-3.dsc sqlrelay_0.38-3_amd64.deb to pool/main/s/sqlrelay/sqlrelay_0.38-3_amd64.deb zope-sqlrelayda_0.38-3_all.deb to pool/main/s/sqlrelay/zope-sqlrelayda_0.38-3_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Matthias Klose [EMAIL PROTECTED] (supplier of updated sqlrelay package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Sun, 1 Jul 2007 23:32:21 +0200 Source: sqlrelay Binary: sqlrelay-mysql sqlrelay-config-gtk libfirstworks-sqlr-perl sqlrelay-odbc sqlrelay-mdb libsqlrelay-java sqlrelay-sqlite sqlrelay-doc php5-sqlrelay sqlrelay-postgresql libsqlrelay-0.38 sqlrelay-dev sqlrelay-freetds libdbd-sqlrelay-perl zope-sqlrelayda sqlrelay-test libsqlrelay-tcl sqlrelay python-sqlrelay libsqlrelay-ruby Architecture: source all amd64 Version: 1:0.38-3 Distribution: unstable Urgency: low Maintainer: Matthias Klose [EMAIL PROTECTED] Changed-By: Matthias Klose [EMAIL PROTECTED] Description: libdbd-sqlrelay-perl - SQL Relay Perl DBD API libfirstworks-sqlr-perl - SQL Relay Perl API libsqlrelay-0.38 - SQL Relay (runtime libraries) libsqlrelay-java - SQL Relay Java API libsqlrelay-ruby - SQL Relay Ruby API libsqlrelay-tcl - SQL Relay Tcl API php5-sqlrelay - SQL Relay PHP API python-sqlrelay - SQL Relay Python (default version) API sqlrelay - Database connection pooling, proxying and load balancing sqlrelay-config-gtk -
Bug#430832: libc6-i386: all 32 bit programs crash
On Wed, Jun 27, 2007 at 08:57:50PM +0200, Luis Peñaranda wrote: Ok, the error is always a segfault. For example, % ldd a.out linux-gate.so.1 = (0xe000) libc.so.6 = /lib32/libc.so.6 (0xf7dd9000) /lib/ld-linux.so.2 (0xf7f27000) (a.out is a hello world program, compiled in a 32 bit machine) Could you please send us the exact message that appears? Also it would be nice to get the a.out file as well as the corresponding source. To get more information, you can also try to run it under gdb to find the problem. Thanks, Aurelien -- .''`. Aurelien Jarno | GPG: 1024D/F1BCDB73 : :' : Debian developer | Electrical Engineer `. `' [EMAIL PROTECTED] | [EMAIL PROTECTED] `-people.debian.org/~aurel32 | www.aurel32.net -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#425404: marked as done (nscd: free's invalid pointer, causing calling program to abort)
Your message dated Mon, 2 Jul 2007 00:40:08 +0200 with message-id [EMAIL PROTECTED] and subject line Processed: severity of 425404 is serious has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: nscd Version: 2.3.6.ds1-13 Severity: important So I get this output: *** glibc detected *** free(): invalid pointer: 0x2ae2a531bf80 *** /usr/bin/da-backup: line 184: 360 Aborted (core dumped) rsync -varzH -e ssh -i /root/.ssh/da_svn --delete --delete-after --ignore-errors /srv/svn.debian.org/svn/ [EMAIL PROTECTED]:irrelevant/ A backtrace of the core file shows: #0 0x2ae2a511107b in raise () from /lib/libc.so.6 No symbol table info available. #1 0x2ae2a511284e in abort () from /lib/libc.so.6 No symbol table info available. #2 0x2ae2a5147629 in __libc_message () from /lib/libc.so.6 No symbol table info available. #3 0x2ae2a514e193 in _int_free () from /lib/libc.so.6 No symbol table info available. #4 0x2ae2a514e21e in free () from /lib/libc.so.6 No symbol table info available. #5 0x2ae2a51d974a in nscd_getpw_r () from /lib/libc.so.6 No symbol table info available. #6 0x2ae2a51d97e6 in __nscd_getpwuid_r () from /lib/libc.so.6 No symbol table info available. #7 0x2ae2a5173066 in getpwuid_r@@GLIBC_2.2.5 () from /lib/libc.so.6 No symbol table info available. #8 0x2ae2a517293f in getpwuid () from /lib/libc.so.6 No symbol table info available. #9 0x00427397 in uid_to_name (uid=36855) at uidlist.c:68 pass = (struct passwd *) 0x4a99bafb5 #10 0x004279bb in add_uid (uid=36855) at uidlist.c:249 list = (struct idlist *) 0x0 #11 0x0041db93 in send_file_entry (file=0x2ae2a99b8ad8, f=4) at flist.c:424 So it appears the breakage is in nscd. Let me know you if there is any more information I can supply. -- System Information: Debian Release: 4.0 APT prefers stable APT policy: (500, 'stable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-4-xen-amd64 Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.utf8) Versions of packages nscd depends on: ii libc6 2.3.6.ds1-13 GNU C Library: Shared libraries nscd recommends no packages. -- no debconf information ---End Message--- ---BeginMessage--- Version: 2.5-1 On Thu, Jun 28, 2007 at 07:45:02PM +, Debian Bug Tracking System wrote: Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.5 # make sure it gets fixed in etch r2 severity 425404 serious Bug#425404: nscd: free's invalid pointer, causing calling program to abort Severity set to `serious' from `important' This bug has been fixed in glibc 2.5-1. Still considered for etch r2 though. -- .''`. Aurelien Jarno | GPG: 1024D/F1BCDB73 : :' : Debian developer | Electrical Engineer `. `' [EMAIL PROTECTED] | [EMAIL PROTECTED] `-people.debian.org/~aurel32 | www.aurel32.net ---End Message---
Processed: this bug breaks a lot of stuff
Processing commands for [EMAIL PROTECTED]: severity 430833 grave Bug#430833: libasound2: PCM plugin `lfloat' not built Severity set to `grave' from `normal' reassign 431288 libasound2 Bug#431288: sweep dies with floating point exception Bug reassigned from package `sweep' to `libasound2'. forcemerge 430833 431288 Bug#430833: libasound2: PCM plugin `lfloat' not built Bug#431288: sweep dies with floating point exception Forcibly Merged 430833 431288. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431145: BTS abuse (was: #431145 FTBFS: debian-installer fails to build on powerpc in sid)]
This bug's state is now set correctly, and the underlying question of whether the bug was actually fixed or not has been resolved. If you must respond to each other about items unrelated to the status of this bug, please do so privately or using other channels, not via the BTS. Don Armstrong -- For a moment, nothing happened. Then, after a second or so, nothing continued to happen. -- Douglas Adams http://www.donarmstrong.com http://rzlab.ucr.edu -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 425404
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.4 tags 425404 + pending Bug#425404: nscd: free's invalid pointer, causing calling program to abort Tags were: patch Tags added: pending End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: Re: Bug#431161: binNMUs in bug reports confuse version tracking
Processing commands for [EMAIL PROTECTED]: notfound 431327 0.8.1a-4+b1 Bug#431327: muse - FTBFS: error: 'lash_get_fqn' was not declared in this scope Bug marked as not found in version 0.8.1a-4+b1. found 431327 0.8.1a-4 Bug#431327: muse - FTBFS: error: 'lash_get_fqn' was not declared in this scope Bug marked as found in version 0.8.1a-4. retitle 431161 [Versioning] Some binNMUs have the wrong source version reported Bug#431161: binNMUs in bug reports confuse version tracking Changed Bug title to `[Versioning] Some binNMUs have the wrong source version reported' from `binNMUs in bug reports confuse version tracking'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#430289: marked as done (klineakconfig always segfaults on D810)
Your message dated Sun, 01 Jul 2007 23:17:03 + with message-id [EMAIL PROTECTED] and subject line Bug#430289: fixed in klineakconfig 0.9-6 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Subject: klineakconfig always segfaults D810 Package: klineakconfig Version: 0.9-5 Severity: grave Justification: renders package unusable Hi, I'm using a dell810 and I habe already seen klineakconfig running on this machine but if a try to install klineadconfig from scratch, klineakconfig always crashes. Using gdb, I get this (no debug so not so informative :() Program received signal SIGSEGV, Segmentation fault. [Switching to Thread -1232660256 (LWP 16905)] 0xb78af1f2 in KCmdLineArgs::parseAllArgs () from /usr/lib/libkdecore.so.4 (gdb) I have remove *all* the lineak related files and reinstall all of them but the bug is still here. Xavier *** Please type your report below this line *** -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.22-rc5-10 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages klineakconfig depends on: ii kdelibs4c2a 4:3.5.7.dfsg.1-1 core libraries and binaries for al ii libc6 2.5-11 GNU C Library: Shared libraries ii libgcc1 1:4.2-20070609-1 GCC support library ii libice6 1:1.0.3-2X11 Inter-Client Exchange library ii liblineak-0.9-0 1:0.9-3 LinEAK development files ii libpng12-0 1.2.15~beta5-2 PNG library - runtime ---End Message--- ---BeginMessage--- Source: klineakconfig Source-Version: 0.9-6 We believe that the bug you reported is fixed in the latest version of klineakconfig, which is due to be installed in the Debian FTP archive: klineakconfig_0.9-6.diff.gz to pool/main/k/klineakconfig/klineakconfig_0.9-6.diff.gz klineakconfig_0.9-6.dsc to pool/main/k/klineakconfig/klineakconfig_0.9-6.dsc klineakconfig_0.9-6_amd64.deb to pool/main/k/klineakconfig/klineakconfig_0.9-6_amd64.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Aurelien Jarno [EMAIL PROTECTED] (supplier of updated klineakconfig package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Format: 1.7 Date: Mon, 02 Jul 2007 01:04:47 +0200 Source: klineakconfig Binary: klineakconfig Architecture: source amd64 Version: 0.9-6 Distribution: unstable Urgency: low Maintainer: Debian QA Group [EMAIL PROTECTED] Changed-By: Aurelien Jarno [EMAIL PROTECTED] Description: klineakconfig - KDE configurator for lineakd Closes: 430289 Changes: klineakconfig (0.9-6) unstable; urgency=low . * QA upload. * Fix a segfault of startup. Thanks to Xavier Gnata for the patch. Closes: #430289. Files: 24f3f9e9be940e89c729af69ffef4037 781 x11 optional klineakconfig_0.9-6.dsc 4ecbd80e2480dfac1ee7f172cd39ec75 7604 x11 optional klineakconfig_0.9-6.diff.gz 1f6882c856d93f7a6c6df0c36aa90b96 145984 x11 optional klineakconfig_0.9-6_amd64.deb -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGiDTbw3ao2vG823MRAsPzAJ9szBetDeIwv4J0cqa7NwT3gdhiUgCfdVZ6 Lq+fp9SNLOkuJeshsqhCArU= =Bnik -END PGP SIGNATURE- ---End Message---
Bug#431369: wlassistant: Doesn't create the wpa_supplicant configuration file
Package: wlassistant Version: 0.5.7-1+b1 Severity: grave Justification: renders package unusable I am trying to connect to a wifi encrypted with WPA (TKIP-PSK). wlassistant does not create the wpa_supplicant configuration file, so wpa_supplicant cannot proceed and the connection becomes impossible. The output on the shell (some private data are hidden): # wlassistant Loaded application options. All interfaces: ath0, eth0, wifi0 Wireless interface(s): ath0 Permissions checked. DHCP Client: dhclient All executables found. scan: /sbin/iwlist ath0 scan Networks found: 4 ACTION: CONNECT. No DHCP client running. No pre-connection command specified. iwconfig_set: /sbin/iwconfig ath0 mode managed channel 1 key off essid *** iwconfig_ap: /sbin/iwconfig ath0 ap **:**:**:**:**:** ==stderr: Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory Using wpa_supplicant driver: wext WPA client started. Waiting for status... ==stderr: Failed to connect to wpa_supplicant - wpa_ctrl_open: No such file or directory CONNECTION FAILED. disconnect: /sbin/iwconfig ath0 mode managed key off ap off essid off -- System Information: Debian Release: lenny/sid APT prefers unstable APT policy: (900, 'unstable'), (400, 'testing'), (350, 'stable'), (300, 'experimental') Architecture: i386 (i686) Kernel: Linux 2.6.21-1-686 (SMP w/2 CPU cores) Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/bash Versions of packages wlassistant depends on: ii kdelibs4c2a [kdelibs-bi 4:3.5.7.dfsg.1-1 core libraries and binaries for al ii kicker 4:3.5.7-1desktop panel for KDE ii libc6 2.5-11 GNU C Library: Shared libraries ii libgcc1 1:4.2-20070609-1 GCC support library ii libiw29 29~pre21-2 Wireless tools - library ii libqt3-mt 3:3.3.7-4+b1 Qt GUI Library (Threaded runtime v ii libstdc++6 4.2-20070609-1 The GNU Standard C++ Library v3 ii menu2.1.34 generates programs menu for all me ii net-tools 1.60-17 The NET-3 networking toolkit ii wireless-tools 29~pre21-2 Tools for manipulating Linux Wirel Versions of packages wlassistant recommends: ii dhcp3-client 3.0.4-14 DHCP Client -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging 422475, tagging 425906, tagging 420177, tagging 422829
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.4 tags 422475 lenny sid Bug#422475: matplotlib: FTBFS: Missing plugin file _ns_transforms.so: Failing build There were no tags set. Tags added: lenny, sid tags 425906 lenny sid Bug#425906: matplotlib: FTBFS: Fails to detect numpy, numeric, numarray There were no tags set. Tags added: lenny, sid tags 420177 lenny sid Bug#420177: nvidia-glx does not work with Xserver 1.3 There were no tags set. Bug#420302: xserver crash with nvidia driver after upgrade. Bug#420417: inhibits loading nvidia module Bug#420450: fails to find OpenGL nvidia driver, does not start Bug#428580: xorg: xorg 1:7.1.0-18 can't load directly nvidia driver module 1.0.8776+6 Bug#428640: xserver-xorg-core: Loading of certain drivers is broken Bug#428697: xserver-xorg-core couldn't open module nvidia Bug#428731: xserver-xorg: After updating from version 1:7.1.0-18 to version 1:7.2-3 the driver nvidia can no longer be found. Tags added: lenny, sid tags 422829 lenny sid Bug#422829: nsis: FTBFS: Source `['build/release/stub_bzip2/stub_bzip2.exe']' not found, needed by target `debian/nsis/usr/share/nsis/Stubs/bzip2'. There were no tags set. Tags added: lenny, sid End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#430265: marked as done (ldbl128 transition for alpha, powerpc, sparc, s390)
Your message dated Sun, 01 Jul 2007 19:19:43 -0400 with message-id [EMAIL PROTECTED] and subject line Bug#430265: ldbl128 transition for alpha, powerpc, sparc, s390 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: libicu36-dev Severity: serious User: [EMAIL PROTECTED] Usertags: goal-ldbl128 Discussed in http://lists.debian.org/debian-devel/2007/05/msg01173.html With glibc-2.5 and gcc-4.1.2 (and gcc-4.2), the 'long double' data type did change from a 64bit representation to a 128bit representation on alpha, powerpc, sparc, s390. To allow partial upgrades of packages, we will need to rename all packages holding libraries with the long double data type in their API. Both libc and libstdc++ do not need to be renamed, because they support both representations. We rename the library packages on all architectures to avoid name mismatches between architectures (you can avoid the renaming by supporting both datatype representations in the library as done in glibc and libstdc++, but unless a library is prepared for that, it does not seem to be worth the effort). It is suggested to rename a package libfoo1 to libfoo1ldbl; please wait with the renaming if the package depends on another library package which needs renaming. This package has been indentified as one with header files in /usr/include matching 'long *double'. Please close this bug report if it is a false positive, or rename the package accordingly. ---End Message--- ---BeginMessage--- Samuel Thibault [EMAIL PROTECTED] wrote: Matthias Klose, le Sat 23 Jun 2007 15:48:04 +0200, a écrit : This package has been indentified as one with header files in /usr/include matching 'long *double'. Please close this bug report if it is a false positive, or rename the package accordingly. It looks like a false positive: . . . I've also looked through the package and concur that it was a false positive. All matches to long.*double or double.*long (I know, just long *double was required) are comments, and there is even a comment saying that it would be nice if long double were supported but that it isn't due to lack of support on many systems. Thanks for your analysis! -- Jay Berkenbilt [EMAIL PROTECTED] ---End Message---
Processed: severity of 431291 is important
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.4 severity 431291 important Bug#431291: initramfs-tools: booting with root=UUID=... does not work with version 0.88 Severity set to `important' from `grave' End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: found 431324 in 0.3.2-8, notfound 431324 in 0.3.2-8+b1
Processing commands for [EMAIL PROTECTED]: # Automatically generated email from bts, devscripts version 2.10.6 found 431324 0.3.2-8 Bug#431324: apt-watch - FTBFS: undefined reference to `glade_xml_signal_autoconnect' Bug marked as found in version 0.3.2-8. notfound 431324 0.3.2-8+b1 Bug#431324: apt-watch - FTBFS: undefined reference to `glade_xml_signal_autoconnect' Bug marked as not found in version 0.3.2-8+b1. End of message, stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed: tagging bugs that are closed by packages in NEW as pending
Processing commands for [EMAIL PROTECTED]: # the following bugs are closed by packages in NEW # tags 375597 pending Bug#375597: ITP: balazarbrothers -- 3D adventure and roleplaying game There were no tags set. Tags added: pending tags 393405 pending Bug#393405: Source package contains non-free IETF RFC/I-D's Tags were: etch-ignore Tags added: pending tags 430608 pending Bug#430608: ITP: xbattbar-acpi -- A lightweight battery monitor for acpi There were no tags set. Tags added: pending thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Processed (with 1 errors): clean up some duplication and other such stuff
Processing commands for [EMAIL PROTECTED]: severity 423337 normal Bug#423337: libpfm3: should this package be removed? Severity set to `normal' from `serious' merge 423337 401810 Bug#401810: duplicate package Bug#423337: libpfm3: should this package be removed? Mismatch - only Bugs in same state can be merged: Values for `severity' don't match: #401810 has `serious'; #423337 has `normal' retitle 423337 RM: libpfm3 -- RoM; deprecated, replaced with libpfm3-3.2 Bug#423337: libpfm3: should this package be removed? Changed Bug title to `RM: libpfm3 -- RoM; deprecated, replaced with libpfm3-3.2' from `libpfm3: should this package be removed?'. reassign 423337 ftp.debian.org Bug#423337: RM: libpfm3 -- RoM; deprecated, replaced with libpfm3-3.2 Bug reassigned from package `libpfm3' to `ftp.debian.org'. thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431315: marked as done (xserver-xorg-video-avivo_0.0.1+git20070614-1(hppa/experimental): FTBFS: configure not executable)
Your message dated Mon, 02 Jul 2007 00:17:05 + with message-id [EMAIL PROTECTED] and subject line Bug#431315: fixed in xserver-xorg-video-avivo 0.0.1+git20070701-1 has caused the attached Bug report to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database) ---BeginMessage--- Package: xserver-xorg-video-avivo Version: 0.0.1+git20070614-1 Severity: serious Hi, your package failed to build from source. You know the drill ;) | Automatic build of xserver-xorg-video-avivo_0.0.1+git20070614-1 on meitner by sbuild/hppa 98-farm | Build started at 20070701-1615 | ** | Checking available source versions... | Fetching source files... | Reading package lists... | Building dependency tree... | Need to get 389kB of source archives. | Get:1 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo 0.0.1+git20070614-1 (dsc) [937B] | Get:2 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo 0.0.1+git20070614-1 (tar) [81.1kB] | Get:3 http://ftp.de.debian.org experimental/main xserver-xorg-video-avivo 0.0.1+git20070614-1 (diff) [307kB] | Fetched 389kB in 4s (90.8kB/s) | Download complete and in download only mode | ** Using build dependencies supplied by package: | Build-Depends: debhelper (= 5.0.0), pkg-config, xserver-xorg-dev (= 2:1.2.99.902), x11proto-video-dev, x11proto-core-dev, x11proto-fonts-dev, x11proto-randr-dev, x11proto-render-dev, x11proto-xext-dev, libpciaccess-dev, autotools-dev, quilt | Checking for already installed source dependencies... [...] | Checking correctness of source dependencies... | Toolchain package versions: libc6-dev_2.5-9 gcc-4.1_4.1.2-12 g++-4.1_4.1.2-12 binutils_2.17cvs20070426-8 libstdc++6-4.1-dev_4.1.2-12 libstdc++6_4.2-20070609-1 | -- | gpg: Signature made Fri Jun 15 02:34:10 2007 CEST using DSA key ID AC5F700C | gpg: Can't check signature: public key not found | dpkg-source: extracting xserver-xorg-video-avivo in xserver-xorg-video-avivo-0.0.1+git20070614 | dpkg-source: unpacking xserver-xorg-video-avivo_0.0.1+git20070614.orig.tar.gz | dpkg-source: applying /home/buildd/build/xserver-xorg-video-avivo_0.0.1+git20070614-1.diff.gz | su: Authentication service cannot retrieve authentication info. | (Ignored) | dpkg-buildpackage: source package is xserver-xorg-video-avivo | dpkg-buildpackage: source version is 0.0.1+git20070614-1 | dpkg-buildpackage: host architecture hppa | dpkg-buildpackage: source version without epoch 0.0.1+git20070614-1 | /usr/bin/fakeroot debian/rules clean | rm -f stampdir/genscripts | rm -f debian/*.config \ | debian/*.postinst \ | debian/*.postrm \ | debian/*.preinst \ | debian/*.prerm | rm -f stampdir/patch | Unapplying patches...nothing to do. | dh_testdir | rm -f .pc patches | rm -rf stampdir build-tree | rm -rf imports | dh_clean debian/shlibs.local \ |debian/MANIFEST.hppa debian/MANIFEST.hppa.new \ |debian/po/pothead | dh_testdir | dh_testroot | rm -f build-stamp | # Add here commands to clean up after the build process. | /usr/bin/make distclean | make[1]: Entering directory `/build/buildd/xserver-xorg-video-avivo-0.0.1+git20070614' | make[1]: *** No rule to make target `distclean'. Stop. | make[1]: Leaving directory `/build/buildd/xserver-xorg-video-avivo-0.0.1+git20070614' | make: [clean] Error 2 (ignored) | rm -f config.sub config.guess | dh_clean | debian/rules build | mkdir stampdir | stampdir/stampdir | if [ ! -e stampdir/patches ]; then \ | mkdir stampdir/patches; \ | ln -s stampdir/patches .pc; \ | echo 2 stampdir/patches/.version; \ | fi; \ | if [ ! -e stampdir/log ]; then \ | mkdir stampdir/log; \ | fi; \ | if [ -e debian/patches ] [ ! -e patches ]; then \ | ln -s debian/patches patches; \ | fi; \ | stampdir/prepare | if ! [ `which quilt` ]; then \ | echo Couldn't find quilt. Please install it or add it to the build-depends for this package.; \ | exit 1; \ | fi; \ | if quilt next; then \ | echo -n Applying patches...; \ | if quilt push -a -v stampdir/log/patch 21; then \ | echo successful.; \ | else \ | echo failed! (check stampdir/log/patch for details); \ | exit 1; \ | fi; \ | else \ | echo No patches to apply; \ | fi
Processed (with 1 errors): merge bugs
Processing commands for [EMAIL PROTECTED]: severity 401810 normal Bug#401810: duplicate package Severity set to `normal' from `serious' merge 423337 401810 Bug#401810: duplicate package Bug#423337: RM: libpfm3 -- RoM; deprecated, replaced with libpfm3-3.2 Mismatch - only Bugs in same state can be merged: Values for `package' don't match: #401810 has `libpfm3'; #423337 has `ftp.debian.org' thanks Stopping processing here. Please contact me if you need assistance. Debian bug tracking system administrator (administrator, Debian Bugs database) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Bug#431054: aptitude doesn't respond to keyboard after installing/upgrading a package
On Fri, Jun 29, 2007 at 11:29:20AM +0200, Jens Kubieziel [EMAIL PROTECTED] was heard to say: steps to reproduce: 1. open aptitude 2. select a package to install/upgrade/remove 3. type 'g' 4. after finished the action I can push any button, but aptitude doesn't react to the keypress. aptitude is listed in ps with 'Sl+' (interruptible sleep, foreground process). When sending a SIGINT (Ctrl+C), aptitude interrupts and all characters typed beforehand are printed to the shell prompt. Is this 100% reproducible for you? If you can compile it with debugging symbols, could you get a threaded dump? (i.e., run info threads in gdb, then thread n and backtrace for each thread number) Daniel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
